Date:         Mon, 9 Oct 1995 19:54:00 EDT
Reply-To:     The NOMAD2 Discussion List
Sender:       The NOMAD2 Discussion List
From:         SPH
Subject:      Re: User Survalance

I noticed that folks have some rather good ideas to help you...    BUT  if i
was managing this process I would penalize anyone that tampers with the
database. The problems is larger than just programming security...  I think
there is an ethics problem here.   Security plus penalty is definetly in
order here...       where is your management when all this is happening...


SPH / ADP




At 11:10 AM 10/9/95 -0400, you wrote:
>     I have a rather large application that users from two separate
>geographic areas use.  The two areas are competing for the same type
>of work from a series of customers.  I have run into a situation where
>one area is deleting the other areas records and creating their own
>so that the system directs the work their way.  I have put a stop to
>this by checking the user security in the procedures that are used and
>either allow or disallow the action.
>     My situation is that one of the users in the area in question is
>capable of creating procedures that he can give to his users that will
>over ride my changes.  Our environment is VM with Nomad 6.03 and SQL/DS.
>     My question is --- is there a way to have the Schema write info to
>a data audit table if a delete is performed?  I've looked at the Rule
>and uproc statements but these appear to either allow or disallow a
>function, not track a function.  Audit appears to write to a dataset
>and not to a table.  Our users don't access any disks as read/write so
>the only location I could write the audit file to is their 191 disk.
>This would not allow me to view the audit file.  Any ideas?
>                                            Thanks, Daniel J. Yeager
>                                                    Yeagerd@Timken.com
>
>



back to index