Safeguard User's Guide (G06.24+, H06.03+)
Securing Disk Files
Safeguard User’s Guide—422089-009
3-8
Specifying Access With the ADD DISKFILE
Command
Specifying Access With the ADD DISKFILE Command
If you specify access control list entries with the ADD DISKFILE command, those
entries plus the default entries make up the access control list for the added file.
Assume you want to use the default access control list for a file named quarter1 and
you also want to add user 4,12 with only READ access. If you have not exited
SAFECOM since the defaults were defined:
=ADD DISKFILE quarter1, ACCESS 4,12 R
To see the settings for quarter1:
=INFO DISKFILE quarter1
The display shows:
The access control list includes both the new entry with READ authority for user 4,12
and the entries specified in the default access control list.
Specifying Access With the ALTER DISKFILE Command
You can use the ALTER DISKFILE command to add, delete, and change entries in an
access control list. To do so, specify the ACCESS attribute in the ALTER command.
For example, you can grant read, write, execute, and purge privileges to user
OAKLAND.ADMIN:
=ALTER DISKFILE $data.log02, ACCESS \OAKLAND.ADMIN (R,W,E,P)
After changing the access control list, make sure the modified access control list is
correct:
=INFO DISKFILE $data.log02
The display shows:
LAST-MODIFIED OWNER STATUS WARNING-MODE
$DATA.SALES
QUARTER1 23JUL05, 15:00 2,1 THAWED OFF
002,001 R,W,E,P
002,018 R,W,E,P
004,012 R
008,004 DENY R
002,* R,W
008,* R
LAST-MODIFIED OWNER STATUS WARNING-MODE
$DATA.AUDIT5
LOG02 19SEP05, 15:11 SECURITY.ADMIN THAWED OFF
TESTER.USER1 R
SECURITY.ADMIN R,W,E,P O
\TEST.PROD.OPER DENY R
\OAKLAND.ADMIN R,W,E,P