Re: concept behind in db2 software as root with some files as world executable

by Darin McBride <dmcbride@[EMAIL PROTECTED] > May 1, 2008 at 08:02 PM

****va359@[EMAIL PROTECTED]
 wrote:

> could someone throw  some light  on   why   do   default
> software  when installed    ( as root   for  creating an instance
> leaves  us with  some  world    accessable directories &  some  world
> executable   files  &  some  world  readable  files   .

It's largely because, well, DB2 needs to be world readable and world
executable.

Anyone on the system should be able to run DB2.  Not just members of
the "bin" group (of which there should be only two: root and bin).

DB2 can't install using db2grp1 as its group because, well, you don't need
to use db2grp1 as your sysadm group.  (Especially since it is "db2iadm1"
by
default for the first instance.)

Your Unix Audit Team should likely contact IBM for a detailed explanation,
but I'm pretty sure IBM has already vetted these permissions fairly
thoroughly.

4 Posts in Topic:

concept behind in db2 software as root with some files as

shiva359@[EMAIL PROTECTED

2008-04-28 05:38:56

Re: concept behind in db2 software as root with some files

Serge Rielau <srielau@

2008-04-28 09:25:09

Re: concept behind in db2 software as root with some files as wo

"Dave Hughes" &

2008-04-28 10:04:32

Re: concept behind in db2 software as root with some files

Darin McBride <dmcbrid

2008-05-01 20:02:24

Post A Reply:

About - Advertising - Contact - Frequently Asked Questions - Privacy Policy - Terms of Use - Signup
tan12V112 Tue Dec 2 20:58:48 CST 2008.