OBJECT privileges: Difference between revisions

OBJECT is a group of privileges that has potential to compromise the security of protected objects such as files or logical name tables. It includes:

• DIAGNOSE allows a proces to run online diagnostic programs and intercept and copy messages written to the error log file
• READALL allows a process to bypass existing restrictions that would otherwise prevent the process from reading an object (such as UIC Protection or ACLS
• VOLPRO allows a process to affect volumes