[Info-vax] Unexpected DECnet Phase IV functionality with possible captive account implications
Dave Froble
davef at tsoft-inc.com
Wed May 12 11:23:25 EDT 2021
On 5/12/2021 8:10 AM, Simon Clubley wrote:
> On 2021-05-11, Dave Froble <davef at tsoft-inc.com> wrote:
>> On 5/11/2021 10:44 AM, Stephen Hoffman wrote:
>>>
>>> It's a way of directly activating hunks of a captive environment that
>>> might not be accessible directly.
>>
>> Only if those "hunks" exist.
>>
>
> As I have already mentioned, someone can also copy a command procedure
> of their choosing to the captive account using FAL and then execute the
> command procedure using one of the two methods.
>
> Simon.
>
Ok. who can create and copy the command procedure?
If limiting activity to the captive account, just how does it get these
command procedures, and how does it copy them?
What you're assuming is that a user already has these authorized
capabilities, and if so, then it is "authorized capabilities".
--
David Froble Tel: 724-529-0450
Dave Froble Enterprises, Inc. E-Mail: davef at tsoft-inc.com
DFE Ultralights, Inc.
170 Grimplin Road
Vanderbilt, PA 15486
More information about the Info-vax
mailing list