
AP-ADVICE-BACKUP-02 Create a job function userid (such as
SUPER.BACKUP) that is used only for running BACKUP. Create Safeguard
Protection Records to give SUPER.BACKUP
READ-only access to all files. Give
those users responsible for running backups
EXECUTE access to a PROGID copy
of the BACKUP utility owned by SUPER.BACKUP.
RISK Anyone logged on as SUPER.BACKUP has read access to every file on
the system.
AP-ADVICE-BACKUP-02A SUPER.BACKUP must be treated as a privi-
leged userid. Users should not be allowed to logon as SUPER.BACKUP.
RISK This method requires a great deal of Safeguard maintenance.
AP-ADVICE-BACKUP-02B To reduce the maintenance overhead, Safeguard ...