Re: RACF password & id checking

I have had to do exactly what is being discussed in z/OS and Linux.

When you are a government contractor and the Inspector General's office
says do it or the certification for the facility
is canceled (along with your contract), you need no more business
justification.

As or security justification, all of the OIG requirements in this area
are industry recognized best practices.

Dennis Roach
GHG Corporation
Lockheed Martin Mission Services
Flight Design and Operations Contract
Address:
2100 Space Park Drive
LM-15-4BH
Houston, Texas 77058
Mail:
P.O. Box 58487
Mail Code H4C
Houston, Texas 77258
Phone:
Voice: (281)336-5027
Cell: (713)591-1059
Fax: (281)336-5410
E-Mail: Dennis.Roach@xxxxxxxx

All opinions expressed by me are mine and may not agree with my employer
or any person, company, or thing, living or dead, on or near this or any
other planet, moon, asteroid, or other spatial object, natural or
manufactured, since the beginning of time.


-----Original Message-----
From: IBM Mainframe Discussion List [mailto:IBM-MAIN@xxxxxxxxxxx] On
Behalf Of Hal Merritt
Sent: Friday, March 06, 2009 3:09 PM
To: IBM-MAIN@xxxxxxxxxxx
Subject: Re: RACF password & id checking

In my 40+ years, exits tend to be politically motivated. That is, the
business/technical issue is really easily solvable some other way.

For the case in point, someone just wants the system to work
differently. There is no technical justification, no business
justification, and arguable security grounds.

Of course, there are a few exists that make perfect business/technical
sense. But the fewer the better. And certainly never, ever, to satisfy
an audit requirement.

Just my $0.02



-----Original Message-----
From: IBM Mainframe Discussion List [mailto:IBM-MAIN@xxxxxxxxxxx] On
Behalf Of Schwarz, Barry A
Sent: Friday, March 06, 2009 1:09 PM
To: IBM-MAIN@xxxxxxxxxxx
Subject: Re: RACF password & id checking

How do any of these "considerations" differ between an exit and the
key
applications the business depends on and without which they wouldn't
need a computer system at all (or even be in business)?

-----Original Message-----
From: Tony B.
Sent: Friday, March 06, 2009 10:55 AM
To: IBM-MAIN@xxxxxxxxxxx
Subject: Re: RACF password & id checking

Exits are a good alternative when: 1. The skillful author never
retires,
finds a better job, gets laid off, is transferred, gets fired, wins
the
lottery, or ages. 2. The company never is merged, acquired,
downsizes,
asks
for a government bailout, acquires another RACF company. 3. The source
is
never misplaced. 4. zOS is never upgraded from OS390, MVS/ESA, MVS-
prior
flavors.....

Else, the term exit should be renamed to "future headache for its
inheritors." 5% of my experiences involved exits where the original
author
was still available...

----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to listserv@xxxxxxxxxxx with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html
NOTICE: This electronic mail message and any files transmitted with it
are intended
exclusively for the individual or entity to which it is addressed. The
message,
together with any attachment, may contain confidential and/or
privileged information.
Any unauthorized review, use, printing, saving, copying, disclosure or
distribution
is strictly prohibited. If you have received this message in error,
please
immediately advise the sender by reply email and delete all copies.

----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to listserv@xxxxxxxxxxx with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html

----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to listserv@xxxxxxxxxxx with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html
.

Relevant Pages

  • Re: RACF password & id checking
    ... exits tend to be politically motivated. ... There is no technical justification, no business justification, and arguable security grounds. ... RACF password & id checking ... Search the archives at http://bama.ua.edu/archives/ibm-main.html ...
    (bit.listserv.ibm-main)
  • Re: Collecting brass at ranges
    ... #The house rules are subordinate to the law. ... The very promise of business dealings requires ... #contract with the store. ...
    (rec.guns)
  • Re: Davis loses to Goliath
    ... Davis got exactly what he deserved for biting the hands that fed him. ... living up to their end of the contract with Davis then they would have ... getting support hand over fist, I imagine that Davis felt left out, because ... siding with business on this one. ...
    (rec.autos.sport.nascar)
  • Re: The Rev
    ... opinions and our values fluctuate so frequently because all of our premises ... > of the fact I ran this business from the basement of my home with 3 full ... contract, there's a cash settlement. ... I do know life is nothing more than a rat ...
    (microsoft.public.cert.exam.mcse)
  • Re: Monitronics monitoring assigned to Apex
    ... > run my business to my customers advantage regardless of what the accepted ... offers the no contract sale. ... client is going to take something for nothing. ... You haven't been in business long enough to know. ...
    (alt.security.alarms)