
COUP Commands With Security Implications
COUP has its own ‘internal’ security; controlling sensitive commands, marked with an
asterisk (*) in the list below. These commands can only be run by members of the
SUPER Group. All of the commands in the list manipulate the hardware configura-
tion of the system.
ADD*
ALTER*
CONFIG
DELETE*
RENAME*
RUN
START*
STOP*
3P-ACCESS-COUP-01 If a third party product is used to grant access to
COUP running as a SUPER Group userid, these commands should be denied
to all users other than the system managers.
Discovery Questions Look here:
OPSYS-OWNER-01 Who owns the COUP object file? Fileinfo
OPSYS-OWNER-01 Who owns the OSCONFIG ...