cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Local File System Attributes for Cross System Dumps, and effects with umask

Former Member

on ‎02-27-2012 7:42 PM

0 Kudos

I have a requirement from the development teams to allow MDM to dump, and PI to pick up (and archive) from the same locations. Currently accounts are set with umask 0022 (as expected).

Are there any repercussions from setting OS umasks to 0002 to allow the MDM and PI os accounts from writing?

Is there a better way to handle this within SAP, or should it be kept as an OS mask task?

(note these will be NFSv3 mounted, thus not using setfacl for launch masking etc).

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (1)

Answers (1)

Former Member
‎02-28-2012 10:41 AM
0 Kudos

There won't be repercussions, except that security will be a bit weakened in one detail. You have to decide whether that's acceptable.

And umask 002 is used by SAP in some similar fields; files in /usr/sap/trans come to my mind for example. So I think you shouldn't worry here.

And no, I am not aware of a better way to handle this within SAP.

But maybe someone else will come up with that?

regards

Show replies
Show replies
Former Member
‎02-28-2012 10:53 AM
0 Kudos

For the /usr/sap/trans transports, what creates those as umask 0002? I'm wondering if a similar method could be use for data dumps to shared locations for PI?.

Former Member
‎02-28-2012 11:08 AM
0 Kudos

Good question!

Not sure about it; I suppose permissions of transport files are hard coded in the programs that create them. Or they are created with whatever permissions, and a chmod is done afterwards.

If you aren't the developer of your dump tool in MDM, i wouldn't expect you can change much...

I may be wrong though.

Ask a Question