Security Patch 801517 incomplete

Brought to you by: ferret1964, twiechmann

#140 Security Patch 801517 incomplete

Milestone: v4.1.1

Status: open

Owner: Jerry Goodnough

Labels: Core Model (79)

Priority: 7

Updated: 2012-09-19

Created: 2005-03-08

Creator: Jerry Goodnough

Private: No

Patch 801517 is in error and will only partially work
if the security has been explictly turned off. The
current kit ship with out any security setting (Nither
on or off) whihc should assume "off". However the
check in ESI$Environment.Security::RequestiPrivledges
is incorrect

The incorrect line is

If $Get(^VESoSECR(1," ","Secure"))=0 Set T%Access=11
Goto SetPrv

There are actually two errors.

1) The most important error is thet it should read:

If '$Get(^VESoSECR(1," ","Secure"))

To insure the binay check works correctly.

2) The access binary code is also set wrong and it
should be:

Set T%Access=(2**16)-1

This will insure the current 4 security options are

allowed as well as 12 future options which have not yet
been assigned.

Attached is an updated version of this method.

Discussion

Jerry Goodnough - 2005-03-08

New Method for RequestPrivledges

ESI$Environment_Security_RequestPrivledges.opm

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Security Patch 801517 incomplete

Group

Searches

Help

#140 Security Patch 801517 incomplete

Discussion