Safeguard User's Guide (G06.24+, H06.03+)
Working with Patterns
Safeguard User’s Guide—422089-009
9-8
SAFECOM Diskfile-Pattern Commands
•
To disable diskfile pattern searches (that is, perform only non-pattern checking):
ALTER SAFEGUARD, CHECK-DISKFILE-PATTERN OFF
•
To set diskfile pattern searches to be the only search (that is, to disable non-pattern
checking for diskfile protection records):
ALTER SAFEGUARD, CHECK-DISKFILE-PATTERN ONLY
SAFECOM Diskfile-Pattern Commands
The ALTER, DELETE, FREEZE, INFO, and THAW commands search for existing
protection records. Both one-dimensional and multi-dimensional searches are
supported for these commands. The ADD command on the other hand, cannot perform
a multi-dimensional search. That is, if all of the wildcards were expanded during an
ADD operation, the resultant pattern would have no wildcards, which, for the G06.25
release, is an illegal pattern. Therefore, it is illegal to specify “ALL” on the ADD
command. However, the ADD command does support one-dimensional searches when
wildcards are used in the volume name.
Patterns can be extremely powerful so protection record level warning mode on the
patterns are implemented so that they may be tested. Patterns do not represent actual
files so they are implicitly “persistent”, that is, they do not go away when a file is
deleted because the pattern could possibly represent another file that does exist.
Since pattern protection records are persistent and describe multiple objects they are
not deleted when a file is deleted or renamed, nor will a pattern protection record be
created when a file is created or renamed. This follows the existing logic of how a
persistent non-pattern protection record is managed. A pattern cannot be specified on
a Default-Protection-Record.
Table 9-2 lists the SAFECOM diskfile-pattern commands. The examples in this section
illustrate the use of these commands. For the detailed syntax of the diskfile pattern
security commands, see the Safeguard Reference Manual. Patterns may be used in
SPI also.
Table 9-2. Diskfile-Pattern Commands (page1of2)
Command Action
ADD DISKFILE-PATTERN Adds a diskfile pattern to the Safeguard database by creating
an authorization record for the file.
ALTER DISKFILE-
PATTERN
Changes one or more of the security attributes in the diskfile-
pattern authorization record.
DELETE DISKFILE-
PATTERN
Removes a diskfile pattern from the Safeguard database by
deleting the disk-file authorization record.
FREEZE DISKFILE-
PATTERN
Suspends access authority to diskfiles described by the
diskfile pattern. No one except a diskfile owner, the primary
owner's group manager, and the super ID can gain access to
the diskfiles described by the frozen pattern.