HP 3000 Manuals HP 3000 Manuals
Summary
Here is a summary of some important file system security rules:
* General users can create files only in their own accounts.
* Only the creator can modify a file's security or rename the file.
* If a file has a lockword, that lockword is required to open the
file.
* An account manager has unlimited access to every file within an
account. When accessing a protected file created by any other
user of the account, the manager must supply the lockword, but can
use the LISTFILE or LISTF commands to discover it. For example,
the following command lists the lockword for a file named SECRET:
LISTFILE SECRET
* The system manager has unlimited access to any file in the system,
if able to supply the lockword (which can be discovered with the
LISTFILE or LISTF commands).
* The RELEASE command allows unlimited file access, and the SECURE
command secures a file that has been released. To release all
security provisions on a file called FREEME, enter:
RELEASE FREEME
To restore security provisions that were previously in effect for
FREEME, enter:
SECURE FREEME
* The ALTSEC command restricts access to specific files in a group
to which access is normally not restricted. This command can only
be used by the creator of the file.
Refer to the MPE/iX Commands Reference Manual Volumes 1 and 2
(32650-90003 and 32650-90364) for further information about the ALTSEC,
LISTFILE, LISTF, RELEASE, and SECURE commands.