Security Management Guide (G06.24+, H06.03+)
Concerns for the User
Security Management Guide—522283-008
5-10
Guardian Security
CODE EOF LAST MODIFICATION OWNER RWEP
NOTES 101 21484 10-APR-90 15:16:56 147,36 "GOOO"
The security setting GOOO appears under the heading RWEP (read, write, execute,
and purge). In this example, any local member of the owner’s group (G) can read the
file, but only the owner (O) can write, execute, or purge the file.
The four types of access (R, W, E, and P) are defined as follows:
•
R (READ)–The ability to examine the file, copy it, or use it as input to a process
such as a TACL process (for example, a TACL command file, macro file, or library
file). Read access is also needed so an object code file can serve as a library for a
process. In the example, the first character (G) means that group members,
including file-sharing members, can read the file.
•
W (WRITE)–The ability to modify the contents of the file. In the example, the
second character (O) means that only the file owner can modify the file.
•
E (EXECUTE)–The ability to execute the file as a process. Executing includes
using the TACL RUN command or the PROCESS_CREATE_ procedure call. In the
example, the third character (O) means that only the file owner can execute the
file.
•
P (PURGE)–The ability to delete, rename, or compress the file. In the example, the
fourth character (O) means that only the file owner can delete, rename, or
compress the file.
If the file is under Safeguard control, the security setting is displayed as four asterisks
(****).
There are seven different security levels for each of the four types of access described
under RWEP. Table 5-2 describes these seven security levels.
Table 5-2. File Access Levels
Code Access Level
- Local super ID only
O Local owner only (the owner)
G Local member of owner’s group (the group)
A Any local user (anyone)
C Local or remote member of owner’s group (the community)
U Local or remote owner only (the user)
N Any local or remote user (the network)