| T.R | Title | User | Personal
Name | Date | Lines |
|---|
| 461.1 | VMSINSTAL Protection Defaults... | XDELTA::HOFFMAN | Steve, OpenVMS Engineering | Mon Apr 14 1997 10:45 | 16 |
|
Use the SECURE_FILE and SET_ACL callbacks.
Kit installations have traditionally installed without any sort
of protection inheritence and has deliberately overridden any
sort of "odd" disk structure protections -- this decision has
been a source of friction between the OpenVMS engineers and the
DECinspect folks, as has been discussed (at length) previously.
It has been intended to avoid seriously "odd" problems that can
result from incorrect protections, and the difficulty in
re-establishing (and then testing) any non-default (unusual) file
protection schemes.
(See the KITINSTAL documentation around default protections.
Please QAR the lack of documentation around ACL processing.)
|
| 461.2 | | AUSS::GARSON | DECcharity Program Office | Mon Apr 14 1997 22:41 | 12 |
| re .0
I use the C option on all PROVIDE_FILEs that are going into application
trees. Whether this is strictly dependable behaviour I don't know but
it has the desired effect.
As .1 says, broadly speaking one is not supposed to rely on any
security attributes propagating from the kit file to the destination
file or from the destination environment to the destination file.
Instead one is supposed to set, *in the kit* via the relevant callbacks,
the precise security attributes that each file requires in order that the
product is secure and yet operational.
|
| 461.3 | | DSC000::CWINPENNY | | Tue Apr 15 1997 12:41 | 11 |
|
Thanks,
The 'C' option on provide file is not, I have been told, dependable. I
can't see any reason why not but then again I couldn't see any reason
why backup wouldn't be either.
SECURE_FILE is only for protection not ACLs so it looks as if I'll
have to use the proverbial hammer and use the SET_ACL callbacks.
Chris
|