|
| Applicability of fix for APAR IY86711 |
 |
Tue, 14 Aug 2007 09:21:17 EDT |
I need to confirm that the fix for APAR IY86711 does not apply to my DB2
servers. Abstract: As described in Security APAR IY86711, a fenced userid is
incorrectly able to access directories.
I reached the conclusion that this APAR does not apply to my servers because
the only fenced user these servers have defined is the instance owner and we do
not have any other UDFs other than the ones shipped with the DB2 product.
Is my conclusion correct ?
|
| Post Reply
|
| Re: Applicability of fix for APAR IY86711 |
 |
Tue, 14 Aug 2007 17:25:21 +020 |
mtoledo@us.ibm.com wrote:
> I need to confirm that the fix for APAR IY86711 does not apply to my DB2
> servers. Abstract: As described in Security APAR IY86711, a fenced userid
> is incorrectly able to access directories.
>
> I reached the conclusion that this APAR does not apply to my servers
> because the only fenced user these servers have defined is the instance
> owner and we do not have any other UDFs other than the ones shipped with
> the DB2 product.
>
> Is my conclusion correct ?
If you don't have any user-defined functions (UDFs) and user-created stored
procedures (SPs) at all, then you won't need this APAR. (Built-in
procedures/functions are not affected by that.) However, if you ever plan
to allow UDFs (for example by installing extenders), you should apply this
fix.
Since this is a security fix, it may be a good idea to install it anyway...
--
Knut Stolze
DB2 z/OS Utilities Development
|
| Post Reply
|
|
|
|
|
|
|
|
|
|