I don't see how we could know this? We'd need a list of all commands/programs the user is authorized to run, and we'd need to know what all of those commands/programs do. We'd also need to know if any of them adopt authority or swap profiles. And we'd need to know all of the commands that are called by those commands, and what THEY do.

And even if we had that information, it seems like it'd take awhile for us to pore over the list.

Don't you have someone on-site who's job is to administer the system, including the system's security? Someone who's familiar with the software installed, and who has taken efforts to make sure users only have access to what they need?

Wouldn't that person be the person to ask?

On 9/28/2010 7:33 AM, Darell Wheeler wrote:
Hi,

A user has command line access on AS400 but he does not have any
special authority on his profile.Is there any risk which the user can
pose to the system.Can he run any dangerous commands or any programs
which may do some activities.

Thanks
Darell



As an Amazon Associate we earn from qualifying purchases.

This thread ...

Replies:

Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.