Manage Learn to apply best practices and optimize your operations.

Reviewing private authorities

After reviewing private authorities on all profiles (Hidden Crevices of OS/400 by Carol Woodbury) I have a couple of questions:

1. Several profiles (group and user) have QDIRSRV *ALL. Does QDIRSRV need to be included in profiles?

2. A few group profiles (currently used but created ages ago) have *PUBLUC authorities of USER DEF with read & execute data rights. Was this a default at one time? My intention is to set PUBLIC *EXCLUDE on all profiles.

First, I do not know why users or groups would need a private authority would need authority to QDIRSRV. Second, the *PUBLIC authority for profiles has always been *EXCLUDE.


The Best Web Links: tips, tutorials and more.

Search400's targeted search engine: Get relevant information on security.

Ask your systems management questions--or help out your peers by answering them--in our live discussion forums.

Check out this Search400.com Featured Topic: Top ten security tips

Visit the ITKnowledge Exchange and get answers to your security questions fast.

This was last published in December 2004

Dig Deeper on iSeries system and application security

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.