Difference between revisions of "OBJECT privileges"
m |
Michaelohare (talk | contribs) m (sp) |
||
| Line 1: | Line 1: | ||
'''OBJECT''' is a group of [[Privileges|privileges]] that has potential to compromise the security of [[Object Class|protected objects]] such as [[File|files]] or [[Logical Name Table|logical name tables]]. It includes: | '''OBJECT''' is a group of [[Privileges|privileges]] that has potential to compromise the security of [[Object Class|protected objects]] such as [[File|files]] or [[Logical Name Table|logical name tables]]. It includes: | ||
| − | * [[DIAGNOSE]] allows a | + | * [[DIAGNOSE]] allows a process to run online diagnostic programs and intercept and copy messages written to the error log file |
* [[READALL]] allows a process to bypass existing restrictions that would otherwise prevent the process from reading an object (such as [[UIC Protection]] or [[ACL|ACLS]]) | * [[READALL]] allows a process to bypass existing restrictions that would otherwise prevent the process from reading an object (such as [[UIC Protection]] or [[ACL|ACLS]]) | ||
* [[VOLPRO]] allows a process to affect [[Volume|volumes]] | * [[VOLPRO]] allows a process to affect [[Volume|volumes]] | ||
[[Category:Object Privileges]] | [[Category:Object Privileges]] | ||
Latest revision as of 15:28, 1 April 2025
OBJECT is a group of privileges that has potential to compromise the security of protected objects such as files or logical name tables. It includes:
- DIAGNOSE allows a process to run online diagnostic programs and intercept and copy messages written to the error log file
- READALL allows a process to bypass existing restrictions that would otherwise prevent the process from reading an object (such as UIC Protection or ACLS)
- VOLPRO allows a process to affect volumes
