|
Implemnt a positiv check for the arguments given by the user
exec_sdbinfo - check for {"-all", "-help", "-v"}; reject others
trace_prot - check for {A...Z,a...z}; reject others
exec_xpu - check for {A...Z,a...z,0...9,,-}; reject others
show - check for {A...Z,a...z,0...9,_,}; reject others
db_cons - check for {A...Z,a...z,0...9,_,}; reject others
load_lcapps - check SAP user (stored in UPC or given by arguements) and SYSDBA (stored in UPC) for "simple identifier" (defined by SQL syntax)
exec_lcinit - check for ["init", "restart", "register", "slow", "stop", "shutdown", "debug", "-e", "ascii", "unicode", "-uDBM", "-uDBA", "-uSQL", "-ud"} and ignore others (do not reject!)
check users (stored in UPC or given by argemeents) for "simple identifier" (defined by SQL syntax)
load_tutorial - check SYSDBA (stored in UPC) for "simple identifier" (defined by SQL syntax)
load_systab - check SYSDBA (stored in UPC) for "simple identifier" (defined by SQL syntax)
The user check of the several users maybe disbaled by adding a line manually to the dbm.cfg in the RUNDIRECTORY of a database.
Please add exactly (with 3 spaces) the line
SECURITY_NOUSRCHK =1
|
|