Portal | Manuals | References | Downloads | Info | Programs | JCLs | Master the Mainframes
IBM Mainframe Computers Forums Index
 
Register
 
IBM Mainframe Computers Forums Index Mainframe: Search IBM Mainframe Forum: FAQ Memberlist Usergroups Profile Log in to check your private messages Log in
 

 

Username, Password hard coded

 
Post new topic   Reply to topic    IBMMAINFRAMES.com Support Forums -> All Other Mainframe Topics
View previous topic :: :: View next topic  
Author Message
anilgkumar

New User


Joined: 26 Feb 2006
Posts: 3
Location: DC

PostPosted: Thu Aug 04, 2011 2:00 am    Post subject: Username, Password hard coded
Reply with quote

Hi! I would like to know how to handle the situation if a COBOL SPROC has username and password hard coded, these Stored procs are for FTP jobs.. Since this a security violation, we would like to change them, do you know how to proceed with this?
Back to top
View user's profile Send private message

Bill O'Boyle

CICS Moderator


Joined: 14 Jan 2008
Posts: 2502
Location: Atlanta, Georgia, USA

PostPosted: Thu Aug 04, 2011 2:52 am    Post subject: Reply to: Username, Password hard coded
Reply with quote

Depending on the submitter, a small Assembler sub-program, which obtains the submitting USERID from the ACEE (via control block traversing) and then issues a RACINIT Macro, will return an RC=00 or a non-00 RC.

As far as passwords in the clear, this is a clear security violation.

It certainly wouldn't pass the "smell" test in my shop.... icon_eek.gif

Bill
Back to top
View user's profile Send private message
anilgkumar

New User


Joined: 26 Feb 2006
Posts: 3
Location: DC

PostPosted: Thu Aug 04, 2011 3:30 am    Post subject:
Reply with quote

Thanks Bill for the quick reply.

I am not familiar with Assembler.Is there any otherway to handle this?

Also, I forgot to mention the user from the front end asp page will trigger the FTP file to download thru the COBOL stored procedure inturn will create a JCL to download/ftp the file.
Back to top
View user's profile Send private message
nevilh

Active User


Joined: 01 Sep 2006
Posts: 258

PostPosted: Thu Aug 04, 2011 4:24 pm    Post subject:
Reply with quote

I would think the way forward would be to define the user (in RACF) to use PASSTICKET processing this would be the way to make the system security compliant. IBM supply a program (PTKTGEN) that can be called and will generate the Passticket . The problem is if the system is not already using PASSTICKET then the RACF environment would have to be set up accordingly.
Back to top
View user's profile Send private message
Bill O'Boyle

CICS Moderator


Joined: 14 Jan 2008
Posts: 2502
Location: Atlanta, Georgia, USA

PostPosted: Thu Aug 04, 2011 5:08 pm    Post subject: Reply to: Username, Password hard coded
Reply with quote

Nevilh,

Great suggestion!

Regards,

Bill
Back to top
View user's profile Send private message
anilgkumar

New User


Joined: 26 Feb 2006
Posts: 3
Location: DC

PostPosted: Thu Aug 04, 2011 7:14 pm    Post subject:
Reply with quote

Thanks nevilh, I will try this and will let you all know.
Back to top
View user's profile Send private message
superk

Moderator Team Head


Joined: 26 Apr 2004
Posts: 4648
Location: Raleigh, NC, USA

PostPosted: Fri Aug 05, 2011 5:24 am    Post subject: Reply to: Username, Password hard coded
Reply with quote

Why, exactly, is the username and password needed?
Back to top
View user's profile Send private message
View previous topic :: :: View next topic  
Post new topic   Reply to topic    IBMMAINFRAMES.com Support Forums -> All Other Mainframe Topics All times are GMT + 6 Hours
Page 1 of 1

 

Search our Forum:

Similar Topics
Topic Author Forum Replies Posted
No new posts Syncsort - Hard coded Value in output PORYES SYNCSORT 1 Thu Nov 03, 2016 9:23 am
No new posts Random Password (in string format) ge... ezhavendhan COBOL Programming 10 Mon Aug 29, 2016 3:18 pm
No new posts REST API call - username and password... vasanthz All Other Mainframe Topics 1 Thu Mar 10, 2016 6:34 pm
No new posts Need help in Finding who changed the ... steve-myers JCL & VSAM 6 Wed Jan 27, 2016 9:01 pm
No new posts How to transfer file password protect... chetanambi TSO/ISPF 8 Thu Apr 30, 2015 10:05 am


Facebook
Back to Top
 
Mainframe Wiki | Forum Rules | Bookmarks | Subscriptions | FAQ | Tutorials | Contact Us