Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

"UPDDTA" without authorisation

295 views
Skip to first unread message

Sascha Braeckle

unread,
Mar 20, 2002, 4:17:17 AM3/20/02
to
I'm a programer on AS/400, from time to time it is very helpful to use the
IBM cmd UPDDTA for quick edit a file without programing. We are moving to a
new AS/400 and there we are not allowed to use UPDDTA or STRDFU.

Is there a trick/solution to use this command or a similar way for doing the
same thing??? I tried to call QDZCMDP (which is the pgm behind the command
UPDDTA) with file/Lib mbr as parameters, but received an error msg:
"Parameters passed on call do not match"...

Thanks for any hint!

Regards,

Sascha


Bradley V. Stone

unread,
Mar 20, 2002, 10:43:50 AM3/20/02
to
You're not allowed to use it, but you're looking for something just
like it to use?

Maybe the rule is you're not allowed to update data outside of the
application. I'd clear that up before looking for another cheat.

UPDDTA is nice for fixing things, but in the wrong hands it can make
more of a mess than it's worth.

Brad
www.bvstools.com

Bradley V. Stone
www.bvstools.com

Martin Brieger

unread,
Mar 20, 2002, 9:28:05 AM3/20/02
to
Sasha,

as Bradley pointed out, some things should only be used if one is 100% sure
what they are doing and can clean up if it's wrong.

You can check if EDTF is on your system

Martin

"Sascha Braeckle" <sbra...@t-online.de> wrote in message
news:a79k9k$mkp$02$1...@news.t-online.com...

Stef van der Made

unread,
Mar 20, 2002, 3:54:14 PM3/20/02
to
You could try SQL but the same risks are applicable to this application.
You do use some kind of change control system to test your programming
before it goes into production.

We don't allow our programmers to touch let alone change our production
data.

Just my 5 cents.

Cheers

stef

Mike Barton

unread,
Mar 21, 2002, 2:43:56 PM3/21/02
to
On Wed, 20 Mar 2002 10:17:17 +0100, "Sascha Braeckle"
<sbra...@t-online.de> wrote:

You could alternatively download the WRKDBF utility.

HTH

JAF

unread,
Mar 25, 2002, 4:27:15 PM3/25/02
to
"Sascha Braeckle" <sbra...@t-online.de> wrote in message news:<a79k9k$mkp$02$1...@news.t-online.com>...


I think that whoever is thinking about the "brilliant" idea of
withrawing authority to use a command is bound to be cheated with some
trick...

Why not to apply security to the data itself instead preventing
programmers to use quite usefull commads?

It is DATA that should be secured, not the tools to access either
production or development and/or test data...

Anyway, how are you prevented?

1. the command is deleted? there's no chance to cheat...
2. the command is given *EXCL to *ALL on EDTOBJAUT ? if you manage to
CRTDUPOBJ of the commmand to one of your libraries and CHGOBJOWN to
your profile, you could use the new command (on the new lib). But this
would only be possible if you could use a session open by an user with
SPCAUT(*SECADM).... tricky...

0 new messages