Manage Learn to apply best practices and optimize your operations.

Reviewing private authorities

After reviewing private authorities on all profiles (Hidden Crevices of OS/400 by Carol Woodbury) I have a couple of questions:

1. Several profiles (group and user) have QDIRSRV *ALL. Does QDIRSRV need to be included in profiles?

2. A few group profiles (currently used but created ages ago) have *PUBLUC authorities of USER DEF with read & execute data rights. Was this a default at one time? My intention is to set PUBLIC *EXCLUDE on all profiles.

First, I do not know why users or groups would need a private authority would need authority to QDIRSRV. Second, the *PUBLIC authority for profiles has always been *EXCLUDE.


The Best Web Links: tips, tutorials and more.

Search400's targeted search engine: Get relevant information on security.

Ask your systems management questions--or help out your peers by answering them--in our live discussion forums.

Check out this Search400.com Featured Topic: Top ten security tips

Visit the ITKnowledge Exchange and get answers to your security questions fast.

Dig Deeper on iSeries system and application security

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.