Policies for Operators

For operators to effectively support site security policy, the following must be true:

  • Operators must be knowledgeable about current security policy.

  • Operators must never use an OU (Output Unit), IL (Ignore Label), or UL (Unlabeled) command to assign a tape drive, ODT, or printer to a program unless the operator knows that the program or user requesting the assignment is permitted to access the tape volume mounted on the tape drive, the ODT, or the printer.

  • If an operator is careless in assigning a unit to a program, security breaches like the following can result:

    • A program gains unwarranted access to sensitive data on a tape.

    • A program reads usercode and password information entered at an ODT.

    • A program illicitly writes to a printer printing payroll check forms.

    • A program writes a counterfeit tape label.

  • Follow the security policies suggested for tapes in “Tape Security Policy” in Controlling File Access.

  • When a programmer or other user makes any request out of the ordinary, or if the operator has any doubts about security policy concerning a user request or observed system activity, the operator should consult with the security administrator.

Prev  Up  Next
Recommendations for Computer Room Contents  Home  Controlling Access to Devices Outside the Computer Room