Users with the RESTRICTED attribute cannot access protected resources they are not specifically authorized to access. (See Defining restricted user IDs for more information.) However, the RESTRICTED attribute has no effect when a user accesses a z/OS UNIX file system resource; the file's "other" permission bits can allow access to users who are not explicitly authorized. To ensure that restricted users do not gain access to z/OS UNIX file system resources through "other" bits, you must perform the following steps.