You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
*NOMAX: the system allows an unlimited<br />
number <strong>of</strong> days.<br />
'1 ' - '366 ': a value between 1 and 366<br />
may be specified.<br />
QPWDLMTAJC: limits if digits can be next<br />
to each other in a new password.<br />
Possible values are:<br />
'0 ': adjacent numeric digits are allowed<br />
in passwords.<br />
'1 ': adjacent numeric digits are not<br />
allowed in passwords.<br />
QPWDLMTCHR: limits the characters that<br />
cannot be in a new password. Possible<br />
values are:<br />
*NONE: there are no restricted characters.<br />
character string: up to 10 specific characters<br />
may be disallowed.<br />
QPWDLMTREP: limits repeating characters<br />
in a new password. Possible values<br />
are:<br />
'0 ': characters can be repeated.<br />
'1 ': characters cannot be repeated more<br />
than once.<br />
PWDMINLEN: controls the minimum number<br />
<strong>of</strong> characters in a password.<br />
Possible values may be from 1 to 10.<br />
QPWDMAXLEN: controls the maximum<br />
number <strong>of</strong> characters in a password.<br />
Possible values may be from 1 to 10.<br />
QPWDPOSDIF: controls if each position in<br />
a new password must be different fro m<br />
the old password.<br />
QPWDRQDDGT: controls if a new password<br />
is required to have a digit.<br />
Possible values are:<br />
'0 ': digits are not required in new passwords.<br />
'1 ': one or more digits are required in<br />
new passwords.<br />
QPWDRQDDIF: specifies if the password<br />
must be different than the 32 previous<br />
passwords. Possible values are:<br />
'0 ': can be the same as the previous<br />
ones.<br />
'1 ': password must not be the same as<br />
the previous 32.<br />
QPWDVLDPGM: specifies the name <strong>of</strong> the<br />
user-written password approval program.<br />
Possible values are:<br />
*NONE: no program is used.<br />
Program-name: specifY the name <strong>of</strong> the<br />
validation program.<br />
Logs<br />
If you want to look at the logs, use the command:<br />
DSPLOG LOG (QHST) PERIOD ((starttime<br />
start-date) (end-time end-date))<br />
MSGID (m essage-identified) OUTP UT<br />
(*PRINT).<br />
Example <strong>of</strong> the time and date:<br />
((0000 941229) (0000 941230). The date<br />
fo rmat depends on the value <strong>of</strong><br />
QDATFMT and it may be MMDDYY,<br />
DDMMYY or YYMMDD.<br />
Messages<br />
Identification<br />
CPF2207<br />
CPF2216<br />
CPF2228<br />
CPF2234<br />
CPF2269<br />
CPF2294<br />
CPF2295<br />
CPF2296<br />
CPF2297<br />
CPF22A6<br />
CPF22B9<br />
Explanation<br />
Not authorized to use<br />
object in library.<br />
Not authorized to use<br />
library.<br />
Not authorized to change<br />
pr<strong>of</strong>ile.<br />
Password not correct.<br />
Sp ecial authority<br />
*ALLOBJ required when<br />
granting ·SECADM.<br />
Initial program value<br />
may not be changed.<br />
Initial menu value may<br />
not be changed.<br />
Attention program may<br />
not be changed.<br />
Current library value<br />
may not be changed.<br />
User creating an authorization<br />
list must have<br />
*ADD authority to his<br />
user pr<strong>of</strong>ile.<br />
Not authorized to change<br />
authorities in authority<br />
list.<br />
OS/400 Release 3<br />
really do not have experience with this<br />
release. This is all the information I was able to<br />
collect. We have seen that the verification <strong>of</strong> the<br />
security on the AS/400 is built in at the microcode<br />
level. So, it could be bypassed by programs<br />
developed in Assembler, C, or even Pascal or<br />
with the OST as we have seen. This loophole<br />
was removed with the introduction <strong>of</strong> level 40<br />
security in Release 3 <strong>of</strong> OS/400.<br />
It has also introduced an audit log that contains<br />
information about security related events. I<br />
do not know more about this release yet.<br />
Summer 1995 2600 Magazine Page 25