Protecting the RRSF listener port
Protect the RRSF listener port so that only the RACF®
subsystem address space has access to it. A default port number of 18136 has been reserved with the
Internet Assigned Numbers Authority (IANA) for the RRSF listener port. Define the RRSF port in the
TCP/IP profile, and assign it a name using the SAF keyword. For information about protecting ports,
see the section on controlling access to particular ports in z/OS® Communications Server: IP Configuration Guide. For information about the PORT command, see z/OS Communications Server: IP Configuration Reference. For example, to assign the name RRSF to the listener
port, you might create the following entry:
PORT 18136 TCP * SAF RRSF ; Listener port for RACF Remote Sharing
To protect
access to the port, the security administrator creates a profile in the SERVAUTH class. For more
information, see Establishing RACF security for RRSF TCP/IP connections in z/OS Security Server RACF Security Administrator's Guide.