OW password displayed in "grep" command

[jdcmwilson]

OW password displayed in \"grep\" command

JDE List,

In my AIX implementation when I do a grep on the jdequeue processes I am
able to see the password for my userid that I am using to start my jdequeue
processes.

Can someone tell me how I might be able to suppress that info so the
"casual, educated" onlooker won't be able to "see" my password(s)?

Thanks in advance.

James Wilson
CNC Consultant

OW Xe B73.3.3 SP16 AIX
IBM RS/6000 AIX 4.3.3 Enterprise Server (Central Objects)
Oracle DB 8.1.6.3
NT 4.0 Deployment Server
"fat" Win95/Win98/Win2000/WinNT and TSE/Citrix "thin" clients






All views are expressly my own and in no way reflect those of my employer.

 

[Larry_Jones]

Re: OW password displayed in \"grep\" command

James,

You need to make changes in JDE.INI and in RunOneWorld.sh as follows:

JDE.INI:
--------
[SECURITY]
ServerPswdFile=TRUE

[NETWORK QUEUE SETTINGS]
QUser=JDE
QPassword=<JDE Password>
QEnv=PD7333
QueueDelay=30

---------------
RunOneWorld.sh:
---------------
change the lines in the script with "runque.sh" in them. Currently they look something like:
$SYSTEM/bin32/runque.sh $OWUSR $OWPWD $OWENV $OWQUE1 UBE 15

Remove the first 3 arguments (JDE User, Password, and Environment) from each of the runque.sh lines.
Note that there are other lines containing User and Password values ($SYSTEM/bin32/cleanup $OWUSR $OWPWD $OWENV $OWQUE2). Don't try to remove this information from the cleanup lines.
---------------

Stop and Start OneWorld and your UID/PWD info will no longer appear on "ps" output.

Don't forget to make sure that only JDE accounts have read access to JDE.INI

Regards,

Larry Jones
[email protected]
OneWorld XE, SP 15.1
HPUX 11, Oracle SE 8.1.6
Mfg, Distribution, Financials

 

[gerd_renz3]

Re: OW password displayed in \"grep\" command

There is a section called "Setting Up Enhanced UNIX Security in the jde.ini File" in the Server and Workstation Admin manual. Itdescribes exactly what Larry wrote.

By the way: cleanup CAN be run with 3 arguments only in XE. But for that the QUSER and the user in the [SECURITY] section have to be both JDE (or at least have to be same), and the passwords for OW and your database have to be same. Larry is right, don´t try to remove the arguments from the cleanup command. It´s too strange to figure it out.

Thansk, Gerd






Em Monday, December 10, 2001 em 04:39:58 PM, [email protected] escreveu:



--
ISM - Solucoes na Internet

http://www.ismnet.com.br/