Table 4-17, Guardian access required to perform ftam actions – Compaq OSI/FTAM D43 User Manual
Page 59
Compaq FTAM Responder Support of
ISO FTAM Functions
OSI/FTAM Responder Manual— 425199-001
4- 23
File-Access and Security Considerations
password. For details on configuring a default user, refer to the OSI/FTAM
Configuration and Management Manual.
The VFS actions allowed by the FTAM responder depend on the Guardian security (R
W E P) for a file and the user ID for the association. For example, if you have Compaq
purge access to a given file, the responder allows the FTAM delete-file action. Table
4-17 shows the Guardian access required for each FTAM VFS action.
Refer to the Compaq File Utility Program (FUP) Reference Manual, the Compaq
Enscribe Programmer’s Guide, and, if your files are Safeguard protected, the Compaq
Safeguard Reference Manual for information about setting READ, WRITE, and PURGE
access to a file.
Because the Compaq responder runs under the user ID for an association, Guardian
security and Safeguard security are both enforced. The responder cannot translate
Safeguard security attributes into the FTAM access-control attribute. Therefore, when a
remote application reads the attributes of a file that the Safeguard software protects, the
access-control attribute indicates that no value is available. However, the Safeguard
software still protects FTAM access to the file. Note that for such a file, the read-
attribute action does not tell you which file-access actions you may perform.
If a file-access request is rejected because the user ID does not meet the Guardian
security requirements of the file, the responder sends a diagnostic message to the
application, and also generates an EMS event message indicating a security violation on
a file-access attempt.
Table 4-17 shows the exclusion mode that applies to each FTAM VFS action. Files
open for read actions are open for SHARED access, allowing more than one user to
open a file concurrently for reading. Files open for insert, replace, extend, and erase
Table 4-17. Guardian Access Required to Perform FTAM Actions
FTAM VFS Action
Guardian File Access
Required
Guardian
Exclusion Mode
Read
READ
SHARED
Insert
WRITE
EXCLUSIVE
Replace
WRITE (READ also
required for EDIT files)
EXCLUSIVE
Extend
WRITE (READ also
required for EDIT files)
EXCLUSIVE
Erase
WRITE
EXCLUSIVE
Read attributes
None
SHARED
Change attributes
WRITE
EXCLUSIVE
Delete file
PURGE
EXCLUSIVE
Note. The Compaq EXECUTE access for a file has no bearing on FTAM access.