Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

does &ZOWEUSER still need SUPERUSER.FILESYS ? #1038

Open
OnnoVdT opened this issue Feb 1, 2020 · 1 comment · May be fixed by #3718
Open

does &ZOWEUSER still need SUPERUSER.FILESYS ? #1038

OnnoVdT opened this issue Feb 1, 2020 · 1 comment · May be fixed by #3718
Assignees
@John-A-Davies @OnnoVdT
Labels
install question Further information is requested saf
Milestone
Backlog

Comments

@OnnoVdT
Copy link
Contributor

OnnoVdT commented Feb 1, 2020

Customer content

Is your feature request related to a problem? Please describe.
A clear and concise description of what the problem is. Ex. I'm always frustrated when [...]

When ZWESECUR was created, a permit to SUPERUSER.FILESYS was added to allow Zowe Server to write data to the install directories (zlux-app-server/deploy), regardless of the permission bits assigned to these directories.
Now that install directories are read-only I think we can remove this permit.

Describe the solution you'd like
A clear and concise description of what you want to happen.

If the Zowe started task still needs to write data during runtime, the target location must be defined during configuration, and appropriate permits must be assigned at that point. There is no more need to be able to ignore permission bits.

Describe alternatives you've considered
A clear and concise description of any alternative solutions or features you've considered.

Leave as-is.

Additional context
Add any other context or screenshots about the feature request here.

The less permits Zowe Server has, the less chance there is that a bug can be exploited.

Engineering team info (eg https://github.com/zowe/explorer-jes/issues/4)

As a [type of user],
I want [some goal]
so that [some reason].

Details/notes
[Detail - implementation notes]

Acceptance Criteria

*Scenario 1: [Title]
Given [context]
And [some more context]...
When [event]
Then [outcome]
 And [another outcome]...
@OnnoVdT OnnoVdT added question Further information is requested install saf labels Feb 1, 2020
@OnnoVdT OnnoVdT added this to the 1.9 (January 2020) milestone Feb 1, 2020
@Joe-Winchester
Copy link
Member

Sounds good - for 1.9 let's take it out and test it given everything is 755

@stevenhorsman stevenhorsman removed their assignment Dec 7, 2020
@1000TurquoisePogs 1000TurquoisePogs linked a pull request Jun 27, 2024 that will close this issue
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@John-A-Davies John-A-Davies

@OnnoVdT OnnoVdT

Labels
install question Further information is requested saf
Projects
Install Improvements (zwe, jcl, smpe/pswi)
Status: No status
Milestone
Backlog
Development

Successfully merging a pull request may close this issue.

Migrate 'zwe init' actions to templated JCL zowe/zowe-install-packaging
4 participants
@Joe-Winchester @stevenhorsman @John-A-Davies @OnnoVdT