|
At security level 40 programmers can use approved IBM interfaces, meaning they can code to commands or APIs. If they attempt to call an OS/400 program directly (that's not an API) the call will fail. It will also fail if they try to directly manipulate or update a database file or internal control structure of OS/400. They will not be able to by-pass auditing or authority checking if you have set up object authority. For details of the protection the various security levels provide you, see the iSeries Security Reference manual or my book, Experts' Guide to OS/400 or i5/OS Security.
==================================
MORE INFORMATION ON THIS TOPIC
==================================
The Best Web Links: tips, tutorials and more.
Search400's targeted search engine: Get relevant information on security.
Ask your systems management questions--or help out your peers by answering them--in our live discussion forums.
Check out this Search400.com Featured Topic: Top ten security tips
Visit the ITKnowledge Exchange and get answers to your security questions fast.
|
