Parameter
gw/sec_info
Short text
External security filename for gateway
Parameter Description
This parameter can be used to protect external programs against being started. Any unauthorized starting of external programs can be prevented by maintaining the file secinfo in the data directory of the gateway instance. The the entries in this file have the following
Syntax
USER=[user], [PWD=[pwd],] [USER-HOST=[user_host],] … HOST=[host],TP=[tp];
A corresponding line will allow the user [user] to start the program [tp] on the host [host].
The level of authorization checking performed can be increased by specifying PWD and/or USER-HOST.
Examples
USER=mueller, HOST=hw1414, TP=test;
USER=hugo, PWD=pass, USER-HOST=hw1234, HOST=hw1414, TP=prog;
User mueller can run program test on host hw1414.
User hugo can run program prog on host hw1414, as long as s/he logged on to the gateway from host hw1234 and used the CPIC call CMSCSP to set the security password to pass.
If the user has used the CMSCSU call to set the security user, this is also used for checking. ‘*’ can be used as a wildcard for all parameters. If PWD and/or USER-HOST is/are not specified, value * is assumed.
Example
All users should be allowed to run program test on host hw1414: USER=*,HOST=hw1414,TP=test;
The current list of security entries can be viewed with the monitor, and a refresh can be triggered from the security file.
Application Area
Gateway
Parameter Unit
File name
Default Value
[Data directory]/secinfo
Who is permitted to make changes?
Customer
Operating System Restrictions
None
Database System Restrictions
None
Are other parameters affected or dependent?
None
Values allowed
File name
