z/OS UNIX System Services Planning
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


UNIX level

z/OS UNIX System Services Planning
GA32-0884-00

If the BPX.DAEMON resource in the FACILITY class is not defined, your system has UNIX-level security. In this case, the system is less secure.

This level of security is for installations where superuser authority has been granted to system programmers. These individuals already have permission to access critical data sets such as PARMLIB, PROCLIB, and LINKLIB. These system programmers have total authority over a system.

Programs that run with superuser authority have daemon level authority. They can issue MVS™ identity-changing services such as setuid(), seteuid() and __spawn() without having first issued a successful _passwd() for the target user ID.

To use the UNIX level of security, assign UID(0) to the superuser. Also assign UID(0) to the user ID used for running daemon programs; for example, inetd or cron.

Parent topic: Establishing the correct level of security for daemons

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014