Без темы
<<  Artwork in PowerPoint Aspect Ratio and Active Format Description How do we make it all fit  >>
Why Exit Programs
Why Exit Programs
What are Exit Programs
What are Exit Programs
What are Exit Programs
What are Exit Programs
What are Exit Programs
What are Exit Programs
What are Exit Programs
What are Exit Programs
File Transfer Transactions
File Transfer Transactions
Картинки из презентации «AS400 Security» к уроку английского языка на тему «Без темы»

Автор: Wayne O. Evans. Чтобы познакомиться с картинкой полного размера, нажмите на её эскиз. Чтобы можно было использовать все картинки для урока английского языка, скачайте бесплатно презентацию «AS400 Security.ppt» со всеми картинками в zip-архиве размером 367 КБ.

AS400 Security

содержание презентации «AS400 Security.ppt»
Сл Текст Сл Текст
1AS/400 Security. All you want to know 25determine if request was upload or
about: Exit Programs. Jim Stracka download. 25.
PentaSafe. 26Installation Instructions. Adopt
2Outline. Exit Program Overview Why do owners authority to allow the programs to
I need exit-programs? What is purpose of send to the audit journal. 1. Compile
exit-programs? If exit-programs don’t programs. 2. Change owner. CHGOBJOWN
exit, why are they called exit programs? OBJ(XXX/EXIT1) OBJTYPE(*PGM) +
Sample exit program Limit file transfer NEWOWN(QSECOFR) CHGOBJOWN OBJ(XXX/EXIT2)
and commands Design Alternatives. 2. OBJTYPE(*PGM) + NEWOWN(QSECOFR). CRTCLPGM
3Security Has Changed. 1980s. Today. 3. PGM(XXX/EXIT1) SRCFILE(XXX/QCLSRC) +
4Other Access Data. DDM (Distributed USRPRF(*OWNER) CRTCLPGM PGM(XXX/EXIT2)
Data Management) File Transfer Remote SRCFILE(XXX/QCLSRC) + USRPRF(*OWNER). 26.
Commands FTP File Transfer Remote Commands 27EXIT1 - File Transfer Exit.
Shared Folders. FTP File Transfer Remote /*****************************************
Commands Telnet IFS (Integrated File */ /* Prevent file upload from PC users */
System). 4. /* except in the UP_LIB library */ /*
5PC Access Data. Work Station. Printer prevent download to PC */ /* except in the
Support. Shared Folders & Documents. DOWN_LIB library */
Remote Commands. Menu Security. File /*****************************************
Transfer. API - Data Queue. API - ODBC. */ IF COND(&APP2 *EQ 'REPLACE')
IFS (Integrated File System). 5. THEN(DO) IF COND(&TFLIB *NE 'UP_LIB ')
6Why Exit Programs. Can object security THEN( + CHGVAR &RC) '0') /*prevent
be used to protect data? YES AS/400 request*/ ENDDO IF COND(&APP2 *EQ
security can lock up data. HOWEVER 'SELECT') THEN(DO) IF COND(&TFLIB *NE
Security design often makes security ’DOWN_LIB ') THEN( + CHGVAR &RC) '0')
protection ineffective make security /*prevent request*/ ENDDO
ineffective. 6. /*****************************************
7Why Exit Programs. What security */ /* Log request in the audit journal */
designs make object security ineffective? /*****************************************
Need to provide additional protection. 7. */ LOG: CHGVAR VAR(&TYPE) VALUE('X'
8Why Exit Programs. Need to provide *CAT &RC) SNDJRNE JRN(QAUDJRN)
additional protection. ?EXIT PROGRAMS TYPE(&TYPE)+ ENTDTA(&STRU)
provide additional protection for Exit:ENDPGM. 3 of 3. Good Way to Monitor
application data. Users are authorized to Use. 27.
data because of existing applications Need 28EXIT2 - File Transfer Exit. 1 of 3.
exists to prevent the user from using /*========================================
their access outside of applications. 8. ======================*/ /* To compile: */
9What are Exit Programs. The purpose of /* */ /* CRTCLPGM PGM(XXX/EXIT2)
exit programs is not to exit. 9. SRCFILE(XXX/QCLSRC) + */ /* USRPRF(*OWNER)
10Request Processing. Programs are */ /* */ /* installation instructions: */
called exit programs because the system /* 1. Compile program */ /* */ /* 2.
(OS/400) exits to a user program in the Change owner of the program to user
middle of a request. 10. QSECOFR. */ /* Adopted authority allows
11Request Processing. request. Server the program sending */ /* to the audit
rejects or performs the request based on journal */ /* CHGOBJOWN OBJ(XXX/EXIT2)
exit program return code. AS/400Server. OBJTYPE(*PGM) + */ /* NEWOWN(QSECOFR) */
PARAMETERS. AS/400 Server. User Exit /* */ /* 3. Name the exit program in
Program. 11. registration facility */ /* ADDEXITPGM
12Specifying Exit Programs. How are exit EXITPNT(QIBM_QZDA_NBR1 ) + */ /*
programs specified? Limited number of FORMAT(ZDAD0100) PGMNBR(1)+ */ /*
request types - Distributed Data PGM(XXX/EXIT2) REPLACE(*NO) + */ /*
Management - PC support (Client Access) text('limit to specific libraries') */ /*
One exit program per network attribute. The request is recorded in the audit
There are two methods to name the exit journal */ /* The audit journal QAUDJRN
programs. Multiple request types entries created are: */ /* 'Z1' = requests
-Distributed data -Client Access that are allowed */ /* 'Z0' = requests
-Integrated File System -Internet (FTP, that are rejected */
Telnet) -Security - ... Multiple exits /*========================================
specific to function. Registration =====================*/ PGM PARM(&RC
Facility. 12. &REQUEST) DCL VAR(&RC) TYPE(*CHAR)
13Specifying Exit Programs. CHGNETA LEN(1) /* 1=allow 0=prevent*/ DCL
DDMACC(lib/pgm) PCSACC(lib/pgm). PCSACC VAR(&REQUEST) TYPE(*CHAR) LEN(700)
*OBJAUT - Request access determined by /*request desc */ DCL VAR(&TYPE)
object authority *REJECT - Prevent all TYPE(*CHAR) LEN(2) /*journal entry type
requests *REGFAC - Use registration */. 28.
facility Lib/Pgm - Qualified name of exit 29EXIT2 - File Transfer Exit. 2 of 3.
program. DDMACC *OBJAUT - Request access DCL var(&x1800) type(*char) len(4) +
determined by object authority *REJECT - value(x'00001800') /* create database
Prevent all requests Lib/Pgm - Qualified file*/ DCL var(&x1801) type(*char)
name of exit program. Must have *ALLOBJ len(4) + value(x'00001801') /* create
special authority to change the network source file*/ DCL var(&x1802)
attributes. Network Attributes. 13. type(*char) len(4) + value(x'00001802') /*
14Specifying Exit Programs. WRKREGINF. add member */ DCL var(&x1803)
Registration Facility. Work with type(*char) len(4) + value(x'00001803') /*
Registration Information Type options, clear member */ DCL var(&x1804)
press Enter. 5=Display exit point 8=Work type(*char) len(4) + value(x'00001804') /*
with exit programs Exit Exit Point Opt delete member */ DCL var(&x1805)
Point Format Registered Text _ type(*char) len(4) + value(x'00001805') /*
QIBM_QHQ_DTAQ DTAQ0100 *YES Original Data file override */ DCL var(&x1806)
Queue Server _ QIBM_QJO_DLT_JRNRCV type(*char) len(4) + value(x'00001806') /*
DRCV0100 *YES Delete Journal Receiver _ delete file override*/ DCL var(&x1807)
QIBM_QLZP_LICENSE LICM0100 *YES Original type(*char) len(4) + value(x'00001807') /*
License Mgmt Server _ QIBM_QMF_MESSAGE create save file */ DCL var(&x1808)
MESS0100 *YES Original Message Server _ type(*char) len(4) + value(x'00001808') /*
QIBM_QNPS_ENTRY ENTR0100 *YES Network clear save file */ DCL var(&x1809)
Print Server - entry _ QIBM_QNPS_SPLF type(*char) len(4) + value(x'00001809') /*
SPLF0100 *YES Network Print Server - spool delete file */ /* OPTIMIZED DATABASE
_ QIBM_QOE_OV_USR_ADM UADM0100 *YES SERVER DECLARES */ DCL VAR(&DBFMT)
OfficeVision/400 Administrati _ TYPE(*CHAR) LEN(8) /* format name */ DCL
QIBM_QOE_OV_USR_SND DOCI0900 *YES VAR(&DBFID) TYPE(*CHAR) LEN(4) /*
OfficeVision/400 Mail Send Ex _ function identifier */ /* THE FOLLOWING
QIBM_QOK_NOTIFY VRFY0100 *YES System PARAMETERS ADDITIONAL FOR FORMAT ZDAD0100
Directory Notify Exit _ QIBM_QOK_SUPPLIER */ DCL VAR(&DBFILE) TYPE(*CHAR)
SUPL0100 *YES System Directory Supplier LEN(128)/* file name */ DCL
Exi _ QIBM_QOK_VERIFY VRFY0100 *YES System VAR(&DBLIB) TYPE(*CHAR) LEN(10) /*
Directory Verify Exit More... Command library name */ DCL VAR(&DBMBR)
===> F3=Exit F4=Prompt F9=Retrieve TYPE(*CHAR) LEN(10) /* member name */ DCL
F12=Cancel. 14. VAR(&DBAUT) TYPE(*CHAR) LEN(10) /*
15Specifying Exit Programs. When a authority to file */ DCL VAR(&DBBFIL)
request arrives PROG1 will be called. 1 TYPE(*CHAR) LEN(128) /* based on file name
PROG1 MYLIB. Registration Facility. Work */ DCL VAR(&DBBLIB) TYPE(*CHAR)
with Exit Programs Exit point: LEN(10) /* based on library name */ DCL
QIBM_QLZP_LICENSE Format: LICM0100 Type VAR(&DBOFIL) TYPE(*CHAR) LEN(10) /*
options, press Enter 1=Add 4=Remove override file name */ DCL VAR(&DBOLIB)
5=Display 10=Replace Exit Program Exit Opt TYPE(*CHAR) LEN(10) /* override library
Number Program Library _ ___________ name */ DCL VAR(&DBOMBR) TYPE(*CHAR)
___________ (No exit programs found.) LEN(10) /* override member name */. 29.
Bottom Command ===> F3=Exit F4=Prompt 30EXIT2 - File Transfer Exit. 3 of 3.
F5=Refresh F9=Retrieve F12=Cancel. 15. MONMSG MSGID(CPF0000) EXEC(GOTO
16Exit Points. What exit points are used CMDLBL(EXIT)) * allow request unless
for a specific request? What are the rejected by program */ CHGVAR VAR(&RC)
parameters passed to an exit? 16. VALUE('1') /* set variables from request
17Outline. Exit Program Overview Why do description */ CHGVAR VAR(&DBFMT)
I need exit-programs? What is purpose of VALUE(%SST(&REQUEST 21 8)) CHGVAR
exit-programs? If exit-programs don’t VAR(&DBFID) VALUE(%SST(&REQUEST 29
exit, why are they called exit programs? 4)) CHGVAR VAR(&DBFILE)
Sample exit program Limit file transfer VALUE(%SST(&REQUEST 33 128)) CHGVAR
and commands Design Alternatives. 17. VAR(&DBLIB) VALUE(%SST(&REQUEST
18Exit Programs. CALL EXIT (RTNCDE 161 10)) CHGVAR VAR(&DBMBR)
STRUCTURE). AS/400 Distributed Data VALUE(%SST(&REQUEST 171 10)) CHGVAR
Management SC41-5307 Client Access Server VAR(&DBOFIL) VALUE(%SST(&REQUEST
Concepts SC41-5740. 18. 329 10)) CHGVAR VAR(&DBOLIB)
19Operation code by Function. Applic VALUE(%SST(&REQUEST 339 10)) CHGVAR
function / operation ation *LMSR license VAR(&DBOMBR) VALUE(%SST(&REQUEST
management REQUEST RELEASE *VPRT virtual 349 10)) IF COND((&DBFID =
print EXTRACT CHECK OPEN *TFRFCL file &X1805)) THEN(DO) /* OVERRIDE */ IF
transfer SELECT JOIN REPLACE EXTRACT COND(&DBOLIB = 'UP_LIB') THEN(GOTO
AS/400 -> PC retrieve information LOG) IF COND(&DBOLIB = 'DOWN_LIB')
SELECT AS/400 -> PC download file JOIN THEN(GOTO LOG) CHGVAR VAR(&RC)
AS/400 -> PC download joined file VALUE('0') ENDDO /* log request in the
REPLACE PC --> AS/400 UPLOAD file. 19. audit journal */ LOG: CHGVAR
20Operation code by Function. Applic VAR(&TYPE) VALUE('Z' *CAT &RC)
function / operation ation *FLRSRV shared SNDJRNE JRN(QAUDJRN) TYPE(&TYPE)
folders type 2 CHANGE CREATE DELETE ENTDTA(&REQUEST) EXIT: ENDPGM. 30.
EXTRACT MOVE OPEN RENAME *MSGFCL messages 31Outline. Exit Program Overview Sample
SEND RECEIVE *DDM distributed data Exit Programs Client Access File Transfer
management ADDMBR DELETE RENAME CHANGE Other exits FTP & Telnet Design
EXTRACT RGZMBR CHGMBR INITIALIZE RMVMBR Alternatives. 31.
CLEAR LOAD RNMMBR COMMAND COPY MOVE LOCK 32Outline. Exit Program Overview Why do
CREATE OPEN UNLOAD. 20. I need exit-programs? What is purpose of
21Prevent Remote Commands. PGM exit-programs? If exit-programs don’t
PARM(&RTNCODE &DATA) DCL &DATA exit, why are they called exit programs?
*CHAR 30 DCL &RTNCODE *CHAR 1 DCL Sample exit program Limit file transfer
&FUNC *CHAR 10 CHGVAR &FUNC and commands Design Alternatives. 32.
(%SST(&DATA 21 10)) IF (&FUNC = 33Compare to constant. Exit Design
'COMMAND ') + THEN( CHGVAR &RTNCODE Alternative. Advantages Excellent
'0') ELSE CHGVAR &RTNCODE '1' ENDPGM. performance Easy to determine program flow
21. Limitations Must recompile program to make
22Exit Program Example. Prevent Remote any change Security specification uses a
Commands and File Upload. 1 of 2. different technique. IF (&USER =
/***************************************** ’ELLEN ’). Constant. 33.
**********/ /* Installation instructions 34Read from File. Exit Design
*/ /* 1. Compile program */ /* CRTCLPGM Alternative. Advantages Good performance
PGM(LIB/EXIT1) */ /* SRCFILE( ) Add and remove users without recompiling
USRPRF(*OWNER) */ /* 2. Change owner of program Limitations Program logic more
the program to user QSECOFR. */ /* Adopted complex Security specification uses a
authority allows the program sending */ /* different technique. 34.
to the audit journal */ /* CHGOBJOWN 35Exit Design Alternative. Authorization
OBJ(LIB/EXIT1) */ /* OBJTYPE(*PGM) list users. Advantages Good performance
NEWOWN(QSECOFR) */ /* 3 Name the exit Add and remove users without recompiling
program in network attributes */ /* program Security specification uses a same
CHGNETA DDMACC(LIB/EXIT1) */ /* technique Limitations Program logic more
PCSACC(LIB/EXIT1) */ /* */ /* The audit complex. 35.
journal QAUDJRN entries created are: */ /* 36Check an Authorization List. IF
'X1' = Requests that are allowed */ /* COND(………………. ) THEN(DO) CHKOBJ
'X0' = Requests that are rejected */ OBJ(QSYS/FILEREAD) + OBJTYPE(*AUTL)
/***************************************** AUT(*USE) MONMSG MSGID(CPF9800) +
**********/ PGM (&RC &STRU ) DCL EXEC(CHGVAR &RC '0') GOTO LOG ENDDO.
&RC *CHAR 1 /*Return 1=allow */ /* Possible to check for different
0=prevent*/ DCL &STRU *CHAR 200 authorities *USE for Read actions *CHANGE
/*Request description*/ DCL &USER for Update actions. 36.
*CHAR 10 /*User profile name */ DCL 37File Transfer Transactions. 37.
&APP1 *CHAR 10 /*Requested function */ 38Summary. 38.
DCL &APP2 *CHAR 10 /*Sub function */ 39SUMMARY. Menu security is not adequate
DCL &TYPE *CHAR 2 /*Journal entry type to limit a user. You must protect data
*/. 22. from access via the other Client Access
23Exit Program Example. Prevent Remote servers: Use exit programs to supplement
Commands and File Upload. 2 of 2. Good Way object security. • FILE TRANSFER. • REMOTE
to Monitor Use. MONMSG CPF0000 EXE(GOTO COMMANDS. • FOLDER ACCESS. 39.
EXIT) /*If error exit*/ CHGVAR &RC '1' 40Summary. Specifying exit program using
/*Allow request*/ CHGVAR &USER network attributes is not recommended
%SST(&STRU 1 10) /*Get user */ CHGVAR Increase overhead Network attributes a
&APP1 %SST(&STRU 11 10) /*Get appl limited set of exits. Use Registration
*/ CHGVAR &APP2 %SST(&STRU 21 10) Facility to specify exit programs. 40.
/*Get function */ /*Do not log IBM request 41Information Sources. Exit Point
to check license */ IF (&APP1 = Documentation Client Access (File
'*LMSRV') GOTO EXIT IF &USER = transfer, ODBC) AS/400 Client Access Host
'XXXXXXXXX') GOTO LOG /* Prevent use of Servers SC41-5740 Distributed Data
remote commands */ IF (&APP1 = '*DDM' Management (DDM, remote commands) AS/400
*AND &APP2 = 'COMMAND') + CHGVAR Distributed Data Management SC41-5307
&RC '0' /* Prevent the request */ ELSE Internet (Telnet, FTP) TCP/IP
/* Prevent file upload from PC users */ /* Configuration and Reference SC41-5420
File download to PC is not prevented */ IF Security System API Reference Security
(&APP1 = '*TFRFCTL' *AND &APP2 = APIs SC41-5872. 41.
'REPLACE') + CHGVAR &RC '0' /* Prevent 42Information Sources. MANUALS SC41-5300
the request */ /* Log request in the audit Tips and Tools for Securing Your AS/400
journal */ LOG:CHGVAR &TYPE ( 'X' *CAT SC41-5301 AS/400 Security Basic SC41-5302
&RC) SNDJRNE QAUDJRN TYPE(&TYPE) AS/400 Security Reference Internet
&ENTDTA(&STRU) EXIT:ENDPGM. 23. S325-6321 IBM Secure Way AS/400 and the
24Exit Program Usage. The Exit Point Internet G325-6321 AS/400 and the Internet
Will Depend Upon the Operating Client SG24-4929 AS/400 Internet Security:
Operating System. 24. Protecting Your AS/400 from HARM on the
25Exit Program Usage. Two programs are Internet. 42.
required because parameters are different. 43More ? ? Jim Stracka
Original File Transfer. Windows 95 and NT j.stracka@pentasafe.com www.pentasafe.com
File Transfer. EXIT1. EXIT2. Difficult to 713-860-9412 - direct. 43.
AS400 Security.ppt
http://900igr.net/kartinka/anglijskij-jazyk/as400-security-107814.html
cсылка на страницу

AS400 Security

другие презентации на тему «AS400 Security»

«ГИА по английскому языку 2013» - Ученики могут пользоваться разнообразными интернет-ресурсами. Аудирование. Ученики готовятся к сдаче ГИА на основе учебной рабочей программы. На Городском уровне школьники проходят Дистанционную Подготовку к ГИА. Письмо. Чтение. Примерная тематика заданий. Структура экзамена. ГИА в 9 классе по английскому языку в 2013 году.

«Vegetables» - Broccoli. Pumpkin. Beet. Turnip. Garlik. Pepper. Tomato. Cucumbers. Carrots. Cabbage. Bow. Vegetables. Radishes. Eggplant.

«Суффиксы прилагательных» - -ate, -y. Часть 4. Суффиксы прилагательных. -less. -able (-ible). -ive. -ed. -al. -ful, -less, -ive, -ic, -al -able (-ible), -ent, -ant, -ate, -y, -ed. -ent, -ant. Например: -ic. Что ещё нужно знать: -ful.

«УМК по английскому языку» - УМК по ИЯ. Новый УМК для 5 класса. Зарубежные учебники по АЯ для начальной школы нарушают экологичность культурной среды. Новый УМК для 5 класса и разрабатываемый УМК для 6 класса помогает младшим подросткам. В данном УМК реализована уникальная технология обучения АЯ как средству общения, УМК по английскому языку для начальной школы.

«Reading» - In 1930 ,she wrote a powerful detective story,The Murder at the Vicarage. I am mad about books. In it she introduced Hercule Poirot ,the Belgian detective who appeared then in 33 novels and 54 short stories. Reading is a way for me to relax and to use imagination. She brilliantly describe the characters of Miss Marple and Hercule Poirot.

«Животные Красноярского края» - A brown bear бурый медведь. A polar bear полярный медведь. An elk лось. A sheep bull овцебык. Животные красноярского края. A polar wolf полярный волк. A white hare заяц-беляк. A reindeer северный олень. Snowy sheep снежный баран. A fox лисица.

Без темы

661 презентация
Урок

Английский язык

29 тем
Картинки