RVKOBJ/GRTOBJ *exclude with *allobj
Hmmmmmmmm. If you have non-admin non-operational types with *ALLOBJ authority in a large shop, that would be cause for concern. David, you'd be surprised. When I first arrived in my last shop, the "local" guy with the "SuperID" had ZERO as/400 training or interest. He was a Novell LAN and PC Tech type of guy, not an AS/400 security adminsitrator. I literally had to cut and paste AS/400 commands into e-mails so that he could paste them into his 5250 session and run the commands for me. He had NO clue what the commands were for, but he was the only guy onsite with the authority to run them. (Our machine and operations staff were physically located in another state.) You betcha, that situation was a cause for concern! P.S. Because he wouldn't learn the 400, yours truly ended becoming the "security expert" on that machine, mostly because I was the only one aware enough to be alarmed by the situation! What a nightmare!
Hmmmmmmmm. If you have non-admin non-operational types with *ALLOBJ authority in a large shop, that would be cause for concern. David, you'd be surprised. When I first arrived in my last shop, the "local" guy with the "SuperID" had ZERO as/400 training or interest. He was a Novell LAN and PC Tech type of guy, not an AS/400 security adminsitrator. I literally had to cut and paste AS/400 commands into e-mails so that he could paste them into his 5250 session and run the commands for me. He had NO clue what the commands were for, but he was the only guy onsite with the authority to run them. (Our machine and operations staff were physically located in another state.) You betcha, that situation was a cause for concern! P.S. Because he wouldn't learn the 400, yours truly ended becoming the "security expert" on that machine, mostly because I was the only one aware enough to be alarmed by the situation! What a nightmare!
Comment