XYGATE Access Control Reference Manual
XYGATE
®
Access Control Reference Manual
Appendix C: The ACACL File
XYPRO Technology Corporation 195 Proprietary and Confidential
C60: OPENSBYOBJECTS
This keyword controls what object files XAC will allow to be opened in addition to the
OBJECT program. Filenames can be up to 40-characters in length, including node
specifications; wildcards are permitted. Up to 100 OPENSBYOBJECTS per ACACL
Command Entry are allowed, with a maximum of 800 for all ACACL Command Entries.
If OPENSBYOBJECTS is not specified, then no objects can be opened; that is, no
programs can be run.
Syntax:
OPENSBYOBJECTS <filename list>
Example:
COMMAND CMI-255
DESCRIPTION "CMI AS SUPER.COMM"
USER 255,253
OBJECT $SYSTEM.SYSTEM.CMI
ACL 1,* 3,5
TIMEOUT 300
OPENSBYOBJECTS \XYPRO.$SYSTEM.SYSTEM.CMPLIB
The above example runs CMI as user 255,253 and only allows CMPLIB to access the
terminal. This prevents the use of the CMI XEQ command to start programs.
Note: The strings following OPENSBYOBJECTS are wildcard specifications for object
files. They are treated as wildcard strings. They are not checked for
conformance with valid filenames. Specifying a string that contains characters
that are not part of a valid filename (such as a comma) means that XAC will not
find a match. This will cause unexpected denials of opens.