Open System Services System Calls Reference Manual (G06.29+, H06.08+, J06.03+)
SPT_FILE_OPEN_(2) OSS System Calls Reference Manual
for read-write access
read and write security levels are checked.
A Guardian file has one of seven levels of security for each access mode. The
owner of the file can set the security level for each access mode by using SET-
MODE function 1 or by using the File Utility Program (FUP) SECURE com-
mand. The following table shows the seven levels of security:
Table 7−3. Levels of Guardian File Security
FUP Code Program Value Access Permitted
_________________________________________________
_________________________________________________
- 7 Local super ID only
U 6 Owner (local or remote),
that is, any user with
owner’s ID
C 5 Member of owner’s group
(local or remote), that is,
any member of owner’s
community
N 4 Any user (local or remote)
O 2 Owner only (local)
G 1 Member of owner’s group
(local)
A 0 Any user (local)
For a given access mode, the accessor’s security level is checked against the file
security level. File access is allowed or not allowed as shown in the following
table. In this table, file security levels are indicated by FUP security codes. For
a given accessor security level, a Y indicates that access is allowed to a file with
the security level shown; an X indicates that access is not allowed.
Table 7−4. Allowed Guardian File Accesses
Accessor’s Security Level File Security Level
-UCNOGA
_______________________________________________
_______________________________________________
Super ID user, local access YYYYYYY
Super ID user, remote access XYYYXXX
Owner or owner’s group manager,
remote access
XYYYXXX
Member of owner’s group, remote
access
XXYYXXX
Any other user, remote access XXXYXXX
Owner or owner’s group manager,
local access
XYYYYYY
Member of owner’s group, local
access
XXYYXYY
7−198 Hewlett-Packard Company 527186-023