z/OS Network File System Guide and Reference
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


Unrestricted data access–security(none)

z/OS Network File System Guide and Reference
SC23-6883-00

If you do not want to restrict data access, you can use the security(none) attribute. Neither exports list checking nor SAF checking is done. Client users can access z/OS files without a z/OS user ID and without using the mvslogin command. They simply mount the z/OS file systems that they want to access and unmount when they are finished. For z/OS UNIX files, the UNIX permission bits are checked before access is granted to the client user. See Figure 1 and Table 1 for information on permission checking.
Note: If UID or GID from the RPC request is zero, it will be mapped to 65534 (nobody) before the UNIX permission checking is performed.
Figure 1. Permission checking for the security(none) attribute
Permission checking for the security(none) attribute
Parent topic: Protecting the file system on z/OS with the Security site attribute

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014