Spufi authorization ???

Dee Reins

Spufi authorization ???
We have a problem with our spufi in our DB2 subsystem.
We went to DB2 V8 new function mode last night. Now the programmers are
not authorized to use Spufi. We did not change any of the
authorizations.

This is the error message..
DSNE106E PLAN DSNESPCS NOT AUTHORIZED FOR SUBSYSTEM DB2P AND AUTH ID
TSXVBUB

This are my questions?
Is the SPUFI plan normally granted public access for execution?
Or is there another way that programmers are granted access to running
spufi?
Could DB2 version 8 new function mode have plugged a security hole.


If this is not perspicuous please let me know.
Dee Reins
360 905-7343 Business
360 905-7212 Fax
360 608-5262 Cell


---------------------------------------------------------------------------------
Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and home page at http://www.idugdb2-l.org/archives/db2-l.html. From that page select "Join or Leave the list". The IDUG DB2-L FAQ is at http://www.idugdb2-l.org. The IDUG List Admins can be reached at [login to unmask email] Find out the latest on IDUG conferences at http://conferences.idug.org/index.cfm

Bill Gallagher

Re: Spufi authorization ???
(in response to Dee Reins)
Dee,

In general, at least at my shop, DSNESPCS is granted to PUBLIC.

We restrict DSNESPRR to prevent folks from inadvertently locking tables for
long periods of time (i.e. run a query in SPUFI, leave the results screen
open, and go to a four-hour meeting).

-------------------------------------------------------
Bill Gallagher, Logical DBA
IT / Infrastructure and Common Services
Phoenix Life Insurance Company
(W) 860-403-6327
(C) 860-539-5576
[login to unmask email]




Dee Reins
<[login to unmask email]
YTEL.COM> To
Sent by: DB2 Data [login to unmask email]
Base Discussion cc
List
<[login to unmask email] Subject
ORG> [DB2-L] Spufi authorization ???


11/29/2006 01:35
PM


Please respond to
DB2 Database
Discussion list
at IDUG
<[login to unmask email]
2-L.ORG>






We have a problem with our spufi in our DB2 subsystem.
We went to DB2 V8 new function mode last night. Now the programmers are
not authorized to use Spufi. We did not change any of the
authorizations.

This is the error message..
DSNE106E PLAN DSNESPCS NOT AUTHORIZED FOR SUBSYSTEM DB2P AND AUTH ID
TSXVBUB

This are my questions?
Is the SPUFI plan normally granted public access for execution?
Or is there another way that programmers are granted access to running
spufi?
Could DB2 version 8 new function mode have plugged a security hole.


If this is not perspicuous please let me know.
Dee Reins
360 905-7343 Business
360 905-7212 Fax
360 608-5262 Cell


---------------------------------------------------------------------------------

Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and home
page at http://www.idugdb2-l.org/archives/db2-l.html. From that page select
"Join or Leave the list". The IDUG DB2-L FAQ is at http://www.idugdb2-l.org
. The IDUG List Admins can be reached at [login to unmask email]
Find out the latest on IDUG conferences at
http://conferences.idug.org/index.cfm



-----------------------------------------
*******************************************************************
CONFIDENTIAL: This communication, including
attachments, is intended only for the exclusive use of addressee
and may contain proprietary, confidential and/or privileged
information. If you are not the intended recipient, you are hereby
notified that you have received this document in error, and any
use, review, copying, disclosure, dissemination or distribution is
strictly prohibited. If you are not the intended recipient, please
notify the sender immediately by return e-mail, delete this
communication and destroy any and all copies of this communication.
*******************************************************************

---------------------------------------------------------------------------------
Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and home page at http://www.idugdb2-l.org/archives/db2-l.html. From that page select "Join or Leave the list". The IDUG DB2-L FAQ is at http://www.idugdb2-l.org. The IDUG List Admins can be reached at [login to unmask email] Find out the latest on IDUG conferences at http://conferences.idug.org/index.cfm

[login to unmask email]

Re: Spufi authorization ???
(in response to Bill Gallagher)
We do the same... CS is open to the PUBLIC but RR is very restricted.

-----Original Message-----
From: DB2 Data Base Discussion List [mailto:[login to unmask email] On
Behalf Of [login to unmask email]
Sent: Wednesday, November 29, 2006 1:36 PM
To: [login to unmask email]
Subject: Re: [DB2-L] Spufi authorization ???

Dee,

In general, at least at my shop, DSNESPCS is granted to PUBLIC.

We restrict DSNESPRR to prevent folks from inadvertently locking tables
for
long periods of time (i.e. run a query in SPUFI, leave the results
screen
open, and go to a four-hour meeting).

-------------------------------------------------------
Bill Gallagher, Logical DBA
IT / Infrastructure and Common Services
Phoenix Life Insurance Company
(W) 860-403-6327
(C) 860-539-5576
[login to unmask email]





Dee Reins

<[login to unmask email]

YTEL.COM>
To
Sent by: DB2 Data [login to unmask email]

Base Discussion
cc
List

<[login to unmask email]
Subject
ORG> [DB2-L] Spufi authorization ???





11/29/2006 01:35

PM





Please respond to

DB2 Database

Discussion list

at IDUG

<[login to unmask email]

2-L.ORG>









We have a problem with our spufi in our DB2 subsystem.
We went to DB2 V8 new function mode last night. Now the programmers are
not authorized to use Spufi. We did not change any of the
authorizations.

This is the error message..
DSNE106E PLAN DSNESPCS NOT AUTHORIZED FOR SUBSYSTEM DB2P AND AUTH ID
TSXVBUB

This are my questions?
Is the SPUFI plan normally granted public access for execution?
Or is there another way that programmers are granted access to running
spufi?
Could DB2 version 8 new function mode have plugged a security hole.


If this is not perspicuous please let me know.
Dee Reins
360 905-7343 Business
360 905-7212 Fax
360 608-5262 Cell


------------------------------------------------------------------------
---------

Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and
home
page at http://www.idugdb2-l.org/archives/db2-l.html. From that page
select
"Join or Leave the list". The IDUG DB2-L FAQ is at
http://www.idugdb2-l.org
. The IDUG List Admins can be reached at
[login to unmask email]
Find out the latest on IDUG conferences at
http://conferences.idug.org/index.cfm



-----------------------------------------
*******************************************************************
CONFIDENTIAL: This communication, including
attachments, is intended only for the exclusive use of addressee
and may contain proprietary, confidential and/or privileged
information. If you are not the intended recipient, you are hereby
notified that you have received this document in error, and any
use, review, copying, disclosure, dissemination or distribution is
strictly prohibited. If you are not the intended recipient, please
notify the sender immediately by return e-mail, delete this
communication and destroy any and all copies of this communication.
*******************************************************************

------------------------------------------------------------------------
---------
Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and
home page at http://www.idugdb2-l.org/archives/db2-l.html. From that
page select "Join or Leave the list". The IDUG DB2-L FAQ is at
http://www.idugdb2-l.org. The IDUG List Admins can be reached at
[login to unmask email] Find out the latest on IDUG conferences
at http://conferences.idug.org/index.cfm

This e-mail and any attachments may contain confidential information of Northwestern Mutual. If you are not the intended recipient of this message, be aware that any disclosure, copying, distribution or use of this e-mail and any attachments is prohibited. If you have received this e-mail in error, please notify Northwestern Mutual immediately by returning it to the sender and delete all copies from your system. Please be advised that communications received via the Northwestern Mutual Secure Message Center are secure. Communications that are not received via the Northwestern Mutual Secure Message Center may not be secure and could be observed by a third party. Thank you for your cooperation.

---------------------------------------------------------------------------------
Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and home page at http://www.idugdb2-l.org/archives/db2-l.html. From that page select "Join or Leave the list". The IDUG DB2-L FAQ is at http://www.idugdb2-l.org. The IDUG List Admins can be reached at [login to unmask email] Find out the latest on IDUG conferences at http://conferences.idug.org/index.cfm

Dee Reins

Re: Spufi authorization ???
(in response to generenico@NORTHWESTERNMUTUAL.COM)
Thank you for your reply's. It was exactly what I needed to know.

If this is not perspicuous please let me know.
Dee Reins
360 905-7343 Business
360 905-7212 Fax
360 608-5262 Cell


-----Original Message-----
From: DB2 Data Base Discussion List [mailto:[login to unmask email] On
Behalf Of Gene Renico
Sent: Wednesday, November 29, 2006 11:46 AM
To: [login to unmask email]
Subject: Re: [DB2-L] Spufi authorization ???

We do the same... CS is open to the PUBLIC but RR is very restricted.

-----Original Message-----
From: DB2 Data Base Discussion List [mailto:[login to unmask email] On
Behalf Of [login to unmask email]
Sent: Wednesday, November 29, 2006 1:36 PM
To: [login to unmask email]
Subject: Re: [DB2-L] Spufi authorization ???

Dee,

In general, at least at my shop, DSNESPCS is granted to PUBLIC.

We restrict DSNESPRR to prevent folks from inadvertently locking tables
for
long periods of time (i.e. run a query in SPUFI, leave the results
screen
open, and go to a four-hour meeting).

-------------------------------------------------------
Bill Gallagher, Logical DBA
IT / Infrastructure and Common Services
Phoenix Life Insurance Company
(W) 860-403-6327
(C) 860-539-5576
[login to unmask email]





Dee Reins

<[login to unmask email]

YTEL.COM>
To
Sent by: DB2 Data [login to unmask email]

Base Discussion
cc
List

<[login to unmask email]
Subject
ORG> [DB2-L] Spufi authorization ???





11/29/2006 01:35

PM





Please respond to

DB2 Database

Discussion list

at IDUG

<[login to unmask email]

2-L.ORG>









We have a problem with our spufi in our DB2 subsystem.
We went to DB2 V8 new function mode last night. Now the programmers are
not authorized to use Spufi. We did not change any of the
authorizations.

This is the error message..
DSNE106E PLAN DSNESPCS NOT AUTHORIZED FOR SUBSYSTEM DB2P AND AUTH ID
TSXVBUB

This are my questions?
Is the SPUFI plan normally granted public access for execution?
Or is there another way that programmers are granted access to running
spufi?
Could DB2 version 8 new function mode have plugged a security hole.


If this is not perspicuous please let me know.
Dee Reins
360 905-7343 Business
360 905-7212 Fax
360 608-5262 Cell


------------------------------------------------------------------------
---------

Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and
home
page at http://www.idugdb2-l.org/archives/db2-l.html. From that page
select
"Join or Leave the list". The IDUG DB2-L FAQ is at
http://www.idugdb2-l.org
. The IDUG List Admins can be reached at
[login to unmask email]
Find out the latest on IDUG conferences at
http://conferences.idug.org/index.cfm



-----------------------------------------
*******************************************************************
CONFIDENTIAL: This communication, including
attachments, is intended only for the exclusive use of addressee
and may contain proprietary, confidential and/or privileged
information. If you are not the intended recipient, you are hereby
notified that you have received this document in error, and any
use, review, copying, disclosure, dissemination or distribution is
strictly prohibited. If you are not the intended recipient, please
notify the sender immediately by return e-mail, delete this
communication and destroy any and all copies of this communication.
*******************************************************************

------------------------------------------------------------------------
---------
Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and
home page at http://www.idugdb2-l.org/archives/db2-l.html. From that
page select "Join or Leave the list". The IDUG DB2-L FAQ is at
http://www.idugdb2-l.org. The IDUG List Admins can be reached at
[login to unmask email] Find out the latest on IDUG conferences
at http://conferences.idug.org/index.cfm

This e-mail and any attachments may contain confidential information of
Northwestern Mutual. If you are not the intended recipient of this
message, be aware that any disclosure, copying, distribution or use of
this e-mail and any attachments is prohibited. If you have received this
e-mail in error, please notify Northwestern Mutual immediately by
returning it to the sender and delete all copies from your system.
Please be advised that communications received via the Northwestern
Mutual Secure Message Center are secure. Communications that are not
received via the Northwestern Mutual Secure Message Center may not be
secure and could be observed by a third party. Thank you for your
cooperation.

------------------------------------------------------------------------
---------
Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and
home page at http://www.idugdb2-l.org/archives/db2-l.html. From that
page select "Join or Leave the list". The IDUG DB2-L FAQ is at
http://www.idugdb2-l.org. The IDUG List Admins can be reached at
[login to unmask email] Find out the latest on IDUG conferences
at http://conferences.idug.org/index.cfm

---------------------------------------------------------------------------------
Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and home page at http://www.idugdb2-l.org/archives/db2-l.html. From that page select "Join or Leave the list". The IDUG DB2-L FAQ is at http://www.idugdb2-l.org. The IDUG List Admins can be reached at [login to unmask email] Find out the latest on IDUG conferences at http://conferences.idug.org/index.cfm

Troy Coleman

Re: Spufi authorization ???
(in response to Dee Reins)
When ever I install DB2 I FREE DSNESPRR and wait for the phone calls for
people asking why they can't get SPUFI to work since RR is the default.
Usually new employees who have never logged in and executed SPUFI.
I also always grant EXECUTE on DSNESPCS to PUBLIC.


-----Original Message-----
From: DB2 Data Base Discussion List [mailto:[login to unmask email] On Behalf
Of Dee Reins
Sent: Wednesday, November 29, 2006 3:29 PM
To: [login to unmask email]
Subject: Re: [DB2-L] Spufi authorization ???

Thank you for your reply's. It was exactly what I needed to know.

If this is not perspicuous please let me know.
Dee Reins
360 905-7343 Business
360 905-7212 Fax
360 608-5262 Cell


-----Original Message-----
From: DB2 Data Base Discussion List [mailto:[login to unmask email] On
Behalf Of Gene Renico
Sent: Wednesday, November 29, 2006 11:46 AM
To: [login to unmask email]
Subject: Re: [DB2-L] Spufi authorization ???

We do the same... CS is open to the PUBLIC but RR is very restricted.

-----Original Message-----
From: DB2 Data Base Discussion List [mailto:[login to unmask email] On
Behalf Of [login to unmask email]
Sent: Wednesday, November 29, 2006 1:36 PM
To: [login to unmask email]
Subject: Re: [DB2-L] Spufi authorization ???

Dee,

In general, at least at my shop, DSNESPCS is granted to PUBLIC.

We restrict DSNESPRR to prevent folks from inadvertently locking tables
for
long periods of time (i.e. run a query in SPUFI, leave the results
screen
open, and go to a four-hour meeting).

-------------------------------------------------------
Bill Gallagher, Logical DBA
IT / Infrastructure and Common Services
Phoenix Life Insurance Company
(W) 860-403-6327
(C) 860-539-5576
[login to unmask email]





Dee Reins

<[login to unmask email]

YTEL.COM>
To
Sent by: DB2 Data [login to unmask email]

Base Discussion
cc
List

<[login to unmask email]
Subject
ORG> [DB2-L] Spufi authorization ???





11/29/2006 01:35

PM





Please respond to

DB2 Database

Discussion list

at IDUG

<[login to unmask email]

2-L.ORG>









We have a problem with our spufi in our DB2 subsystem.
We went to DB2 V8 new function mode last night. Now the programmers are
not authorized to use Spufi. We did not change any of the
authorizations.

This is the error message..
DSNE106E PLAN DSNESPCS NOT AUTHORIZED FOR SUBSYSTEM DB2P AND AUTH ID
TSXVBUB

This are my questions?
Is the SPUFI plan normally granted public access for execution?
Or is there another way that programmers are granted access to running
spufi?
Could DB2 version 8 new function mode have plugged a security hole.


If this is not perspicuous please let me know.
Dee Reins
360 905-7343 Business
360 905-7212 Fax
360 608-5262 Cell


------------------------------------------------------------------------
---------

Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and
home
page at http://www.idugdb2-l.org/archives/db2-l.html. From that page
select
"Join or Leave the list". The IDUG DB2-L FAQ is at
http://www.idugdb2-l.org
. The IDUG List Admins can be reached at
[login to unmask email]
Find out the latest on IDUG conferences at
http://conferences.idug.org/index.cfm



-----------------------------------------
*******************************************************************
CONFIDENTIAL: This communication, including
attachments, is intended only for the exclusive use of addressee
and may contain proprietary, confidential and/or privileged
information. If you are not the intended recipient, you are hereby
notified that you have received this document in error, and any
use, review, copying, disclosure, dissemination or distribution is
strictly prohibited. If you are not the intended recipient, please
notify the sender immediately by return e-mail, delete this
communication and destroy any and all copies of this communication.
*******************************************************************

------------------------------------------------------------------------
---------
Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and
home page at http://www.idugdb2-l.org/archives/db2-l.html. From that
page select "Join or Leave the list". The IDUG DB2-L FAQ is at
http://www.idugdb2-l.org. The IDUG List Admins can be reached at
[login to unmask email] Find out the latest on IDUG conferences
at http://conferences.idug.org/index.cfm

This e-mail and any attachments may contain confidential information of
Northwestern Mutual. If you are not the intended recipient of this
message, be aware that any disclosure, copying, distribution or use of
this e-mail and any attachments is prohibited. If you have received this
e-mail in error, please notify Northwestern Mutual immediately by
returning it to the sender and delete all copies from your system.
Please be advised that communications received via the Northwestern
Mutual Secure Message Center are secure. Communications that are not
received via the Northwestern Mutual Secure Message Center may not be
secure and could be observed by a third party. Thank you for your
cooperation.

------------------------------------------------------------------------
---------
Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and
home page at http://www.idugdb2-l.org/archives/db2-l.html. From that
page select "Join or Leave the list". The IDUG DB2-L FAQ is at
http://www.idugdb2-l.org. The IDUG List Admins can be reached at
[login to unmask email] Find out the latest on IDUG conferences
at http://conferences.idug.org/index.cfm

----------------------------------------------------------------------------
-----
Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and home
page at http://www.idugdb2-l.org/archives/db2-l.html. From that page select
"Join or Leave the list". The IDUG DB2-L FAQ is at http://www.idugdb2-l.org.
The IDUG List Admins can be reached at [login to unmask email] Find
out the latest on IDUG conferences at http://conferences.idug.org/index.cfm

---------------------------------------------------------------------------------
Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and home page at http://www.idugdb2-l.org/archives/db2-l.html. From that page select "Join or Leave the list". The IDUG DB2-L FAQ is at http://www.idugdb2-l.org. The IDUG List Admins can be reached at [login to unmask email] Find out the latest on IDUG conferences at http://conferences.idug.org/index.cfm

Wayne Driscoll

Re: Spufi authorization ???
(in response to Troy Coleman)
Another option is to rebind DSNESPRR with an isolation level of CS,
thereby eliminating the chance that people will use spufi with RR.
Wayne Driscoll
Product Developer
JME Software LLC
NOTE: All opinions are strictly my own.


-----Original Message-----
From: DB2 Data Base Discussion List [mailto:[login to unmask email] On
Behalf Of Troy Coleman
Sent: Thursday, November 30, 2006 10:55 PM
To: [login to unmask email]
Subject: Re: [DB2-L] Spufi authorization ???

When ever I install DB2 I FREE DSNESPRR and wait for the phone calls for
people asking why they can't get SPUFI to work since RR is the default.
Usually new employees who have never logged in and executed SPUFI.
I also always grant EXECUTE on DSNESPCS to PUBLIC.


-----Original Message-----
From: DB2 Data Base Discussion List [mailto:[login to unmask email] On
Behalf Of Dee Reins
Sent: Wednesday, November 29, 2006 3:29 PM
To: [login to unmask email]
Subject: Re: [DB2-L] Spufi authorization ???

Thank you for your reply's. It was exactly what I needed to know.

If this is not perspicuous please let me know.
Dee Reins
360 905-7343 Business
360 905-7212 Fax
360 608-5262 Cell


-----Original Message-----
From: DB2 Data Base Discussion List [mailto:[login to unmask email] On
Behalf Of Gene Renico
Sent: Wednesday, November 29, 2006 11:46 AM
To: [login to unmask email]
Subject: Re: [DB2-L] Spufi authorization ???

We do the same... CS is open to the PUBLIC but RR is very restricted.

-----Original Message-----
From: DB2 Data Base Discussion List [mailto:[login to unmask email] On
Behalf Of [login to unmask email]
Sent: Wednesday, November 29, 2006 1:36 PM
To: [login to unmask email]
Subject: Re: [DB2-L] Spufi authorization ???

Dee,

In general, at least at my shop, DSNESPCS is granted to PUBLIC.

We restrict DSNESPRR to prevent folks from inadvertently locking tables
for long periods of time (i.e. run a query in SPUFI, leave the results
screen open, and go to a four-hour meeting).

-------------------------------------------------------
Bill Gallagher, Logical DBA
IT / Infrastructure and Common Services
Phoenix Life Insurance Company
(W) 860-403-6327
(C) 860-539-5576
[login to unmask email]





Dee Reins

<[login to unmask email]

YTEL.COM>
To
Sent by: DB2 Data [login to unmask email]

Base Discussion
cc
List

<[login to unmask email]
Subject
ORG> [DB2-L] Spufi authorization ???





11/29/2006 01:35

PM





Please respond to

DB2 Database

Discussion list

at IDUG

<[login to unmask email]

2-L.ORG>









We have a problem with our spufi in our DB2 subsystem.
We went to DB2 V8 new function mode last night. Now the programmers are
not authorized to use Spufi. We did not change any of the
authorizations.

This is the error message..
DSNE106E PLAN DSNESPCS NOT AUTHORIZED FOR SUBSYSTEM DB2P AND AUTH ID
TSXVBUB

This are my questions?
Is the SPUFI plan normally granted public access for execution?
Or is there another way that programmers are granted access to running
spufi?
Could DB2 version 8 new function mode have plugged a security hole.


If this is not perspicuous please let me know.
Dee Reins
360 905-7343 Business
360 905-7212 Fax
360 608-5262 Cell


------------------------------------------------------------------------
---------

Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and
home page at http://www.idugdb2-l.org/archives/db2-l.html. From that
page select "Join or Leave the list". The IDUG DB2-L FAQ is at
http://www.idugdb2-l.org . The IDUG List Admins can be reached at
[login to unmask email]
Find out the latest on IDUG conferences at
http://conferences.idug.org/index.cfm



-----------------------------------------
*******************************************************************
CONFIDENTIAL: This communication, including attachments, is intended
only for the exclusive use of addressee and may contain proprietary,
confidential and/or privileged information. If you are not the intended
recipient, you are hereby notified that you have received this document
in error, and any use, review, copying, disclosure, dissemination or
distribution is strictly prohibited. If you are not the intended
recipient, please notify the sender immediately by return e-mail, delete
this communication and destroy any and all copies of this communication.
*******************************************************************

------------------------------------------------------------------------
---------
Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and
home page at http://www.idugdb2-l.org/archives/db2-l.html. From that
page select "Join or Leave the list". The IDUG DB2-L FAQ is at
http://www.idugdb2-l.org. The IDUG List Admins can be reached at
[login to unmask email] Find out the latest on IDUG conferences
at http://conferences.idug.org/index.cfm

This e-mail and any attachments may contain confidential information of
Northwestern Mutual. If you are not the intended recipient of this
message, be aware that any disclosure, copying, distribution or use of
this e-mail and any attachments is prohibited. If you have received this
e-mail in error, please notify Northwestern Mutual immediately by
returning it to the sender and delete all copies from your system.
Please be advised that communications received via the Northwestern
Mutual Secure Message Center are secure. Communications that are not
received via the Northwestern Mutual Secure Message Center may not be
secure and could be observed by a third party. Thank you for your
cooperation.

------------------------------------------------------------------------
---------
Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and
home page at http://www.idugdb2-l.org/archives/db2-l.html. From that
page select "Join or Leave the list". The IDUG DB2-L FAQ is at
http://www.idugdb2-l.org. The IDUG List Admins can be reached at
[login to unmask email] Find out the latest on IDUG conferences
at http://conferences.idug.org/index.cfm

------------------------------------------------------------------------
----
-----
Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and
home page at http://www.idugdb2-l.org/archives/db2-l.html. From that
page select "Join or Leave the list". The IDUG DB2-L FAQ is at
http://www.idugdb2-l.org.
The IDUG List Admins can be reached at [login to unmask email]
Find out the latest on IDUG conferences at
http://conferences.idug.org/index.cfm

------------------------------------------------------------------------
---------
Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and
home page at http://www.idugdb2-l.org/archives/db2-l.html. From that
page select "Join or Leave the list". The IDUG DB2-L FAQ is at
http://www.idugdb2-l.org. The IDUG List Admins can be reached at
[login to unmask email] Find out the latest on IDUG conferences
at http://conferences.idug.org/index.cfm

---------------------------------------------------------------------------------
Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and home page at http://www.idugdb2-l.org/archives/db2-l.html. From that page select "Join or Leave the list". The IDUG DB2-L FAQ is at http://www.idugdb2-l.org. The IDUG List Admins can be reached at [login to unmask email] Find out the latest on IDUG conferences at http://conferences.idug.org/index.cfm

Raymond Bell

Re: Spufi authorization ???
(in response to Wayne Driscoll)
That's what we do, and I've done it at numerous sites - rebind the RR
plan/package to use CS. If you really want RR code 'with RR' at the end of
your SQL.


Raymond Bell
Database Administrator

-----Original Message-----
From: DB2 Data Base Discussion List [mailto:[login to unmask email] On Behalf
Of Wayne Driscoll
Sent: 01 December 2006 15:59
To: [login to unmask email]
Subject: Re: [DB2-L] Spufi authorization ???

Another option is to rebind DSNESPRR with an isolation level of CS, thereby
eliminating the chance that people will use spufi with RR.
Wayne Driscoll
Product Developer
JME Software LLC
NOTE: All opinions are strictly my own.



This e-mail (and any attachments) may contain privileged and/or confidential information. If you are not the intended recipient please do not disclose, copy, distribute, disseminate or take any action in reliance on it. If you have received this message in error please reply and tell us and then delete it. Should you wish to communicate with us by e-mail we cannot guarantee the security of any data outside our own computer systems. For the protection of Legal & General's systems and staff, incoming emails will be automatically scanned.

Any information contained in this message may be subject to applicable terms and conditions and must not be construed as giving investment advice within or outside the United Kingdom.

The following companies are subsidiary companies of the Legal & General Group Plc which are authorised and regulated by the Financial Services Authority for advising and arranging the products shown: Legal & General Partnership Services Limited (insurance and mortgages), Legal & General Insurance Limited (insurance), Legal & General Assurance Society Limited
(life assurance, pensions and investments), Legal & General Unit Trust Managers Limited and Legal & General Portfolio Management Services Limited (investments).

They are registered in England under numbers shown.
The registered office is Temple Court, 11 Queen Victoria Street, London EC4N 4TP.

Legal & General Partnership Services Limited: 5045000 Legal & General Assurance Society Limited: 166055 Legal & General (Unit Trust Managers) Limited: 1009418 Legal & General (Portfolio Management Services) Limited: 2457525 Legal & General Insurance Limited: 423930

They are registered with the Financial Services Authority under numbers shown. You can check this at www.fsa.gov.uk/register

Legal & General Partnership Services Limited: 300792 Legal & General Assurance Society Limited: 117659 Legal & General (Unit Trust Managers) Limited: 119273 Legal & General (Portfolio Management Services) Limited: 146786 Legal & General Insurance Limited: 202050

---------------------------------------------------------------------------------
Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and home page at http://www.idugdb2-l.org/archives/db2-l.html. From that page select "Join or Leave the list". The IDUG DB2-L FAQ is at http://www.idugdb2-l.org. The IDUG List Admins can be reached at [login to unmask email] Find out the latest on IDUG conferences at http://conferences.idug.org/index.cfm

Troy Coleman

Re: Spufi authorization ???
(in response to Raymond Bell)
Hi Wayne,
That is a nice idea.. keeps the phone calls down :-)
It would be nice if IBM defaulted to CS instead of RR.
Thanks for the idea.

Troy Coleman


-----Original Message-----
From: DB2 Data Base Discussion List [mailto:[login to unmask email] On Behalf
Of Wayne Driscoll
Sent: Friday, December 01, 2006 9:59 AM
To: [login to unmask email]
Subject: Re: [DB2-L] Spufi authorization ???

Another option is to rebind DSNESPRR with an isolation level of CS,
thereby eliminating the chance that people will use spufi with RR.
Wayne Driscoll
Product Developer
JME Software LLC
NOTE: All opinions are strictly my own.


-----Original Message-----
From: DB2 Data Base Discussion List [mailto:[login to unmask email] On
Behalf Of Troy Coleman
Sent: Thursday, November 30, 2006 10:55 PM
To: [login to unmask email]
Subject: Re: [DB2-L] Spufi authorization ???

When ever I install DB2 I FREE DSNESPRR and wait for the phone calls for
people asking why they can't get SPUFI to work since RR is the default.
Usually new employees who have never logged in and executed SPUFI.
I also always grant EXECUTE on DSNESPCS to PUBLIC.


-----Original Message-----
From: DB2 Data Base Discussion List [mailto:[login to unmask email] On
Behalf Of Dee Reins
Sent: Wednesday, November 29, 2006 3:29 PM
To: [login to unmask email]
Subject: Re: [DB2-L] Spufi authorization ???

Thank you for your reply's. It was exactly what I needed to know.

If this is not perspicuous please let me know.
Dee Reins
360 905-7343 Business
360 905-7212 Fax
360 608-5262 Cell


-----Original Message-----
From: DB2 Data Base Discussion List [mailto:[login to unmask email] On
Behalf Of Gene Renico
Sent: Wednesday, November 29, 2006 11:46 AM
To: [login to unmask email]
Subject: Re: [DB2-L] Spufi authorization ???

We do the same... CS is open to the PUBLIC but RR is very restricted.

-----Original Message-----
From: DB2 Data Base Discussion List [mailto:[login to unmask email] On
Behalf Of [login to unmask email]
Sent: Wednesday, November 29, 2006 1:36 PM
To: [login to unmask email]
Subject: Re: [DB2-L] Spufi authorization ???

Dee,

In general, at least at my shop, DSNESPCS is granted to PUBLIC.

We restrict DSNESPRR to prevent folks from inadvertently locking tables
for long periods of time (i.e. run a query in SPUFI, leave the results
screen open, and go to a four-hour meeting).

-------------------------------------------------------
Bill Gallagher, Logical DBA
IT / Infrastructure and Common Services
Phoenix Life Insurance Company
(W) 860-403-6327
(C) 860-539-5576
[login to unmask email]





Dee Reins

<[login to unmask email]

YTEL.COM>
To
Sent by: DB2 Data [login to unmask email]

Base Discussion
cc
List

<[login to unmask email]
Subject
ORG> [DB2-L] Spufi authorization ???





11/29/2006 01:35

PM





Please respond to

DB2 Database

Discussion list

at IDUG

<[login to unmask email]

2-L.ORG>









We have a problem with our spufi in our DB2 subsystem.
We went to DB2 V8 new function mode last night. Now the programmers are
not authorized to use Spufi. We did not change any of the
authorizations.

This is the error message..
DSNE106E PLAN DSNESPCS NOT AUTHORIZED FOR SUBSYSTEM DB2P AND AUTH ID
TSXVBUB

This are my questions?
Is the SPUFI plan normally granted public access for execution?
Or is there another way that programmers are granted access to running
spufi?
Could DB2 version 8 new function mode have plugged a security hole.


If this is not perspicuous please let me know.
Dee Reins
360 905-7343 Business
360 905-7212 Fax
360 608-5262 Cell


------------------------------------------------------------------------
---------

Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and
home page at http://www.idugdb2-l.org/archives/db2-l.html. From that
page select "Join or Leave the list". The IDUG DB2-L FAQ is at
http://www.idugdb2-l.org . The IDUG List Admins can be reached at
[login to unmask email]
Find out the latest on IDUG conferences at
http://conferences.idug.org/index.cfm



-----------------------------------------
*******************************************************************
CONFIDENTIAL: This communication, including attachments, is intended
only for the exclusive use of addressee and may contain proprietary,
confidential and/or privileged information. If you are not the intended
recipient, you are hereby notified that you have received this document
in error, and any use, review, copying, disclosure, dissemination or
distribution is strictly prohibited. If you are not the intended
recipient, please notify the sender immediately by return e-mail, delete
this communication and destroy any and all copies of this communication.
*******************************************************************

------------------------------------------------------------------------
---------
Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and
home page at http://www.idugdb2-l.org/archives/db2-l.html. From that
page select "Join or Leave the list". The IDUG DB2-L FAQ is at
http://www.idugdb2-l.org. The IDUG List Admins can be reached at
[login to unmask email] Find out the latest on IDUG conferences
at http://conferences.idug.org/index.cfm

This e-mail and any attachments may contain confidential information of
Northwestern Mutual. If you are not the intended recipient of this
message, be aware that any disclosure, copying, distribution or use of
this e-mail and any attachments is prohibited. If you have received this
e-mail in error, please notify Northwestern Mutual immediately by
returning it to the sender and delete all copies from your system.
Please be advised that communications received via the Northwestern
Mutual Secure Message Center are secure. Communications that are not
received via the Northwestern Mutual Secure Message Center may not be
secure and could be observed by a third party. Thank you for your
cooperation.

------------------------------------------------------------------------
---------
Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and
home page at http://www.idugdb2-l.org/archives/db2-l.html. From that
page select "Join or Leave the list". The IDUG DB2-L FAQ is at
http://www.idugdb2-l.org. The IDUG List Admins can be reached at
[login to unmask email] Find out the latest on IDUG conferences
at http://conferences.idug.org/index.cfm

------------------------------------------------------------------------
----
-----
Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and
home page at http://www.idugdb2-l.org/archives/db2-l.html. From that
page select "Join or Leave the list". The IDUG DB2-L FAQ is at
http://www.idugdb2-l.org.
The IDUG List Admins can be reached at [login to unmask email]
Find out the latest on IDUG conferences at
http://conferences.idug.org/index.cfm

------------------------------------------------------------------------
---------
Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and
home page at http://www.idugdb2-l.org/archives/db2-l.html. From that
page select "Join or Leave the list". The IDUG DB2-L FAQ is at
http://www.idugdb2-l.org. The IDUG List Admins can be reached at
[login to unmask email] Find out the latest on IDUG conferences
at http://conferences.idug.org/index.cfm

----------------------------------------------------------------------------
-----
Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and home
page at http://www.idugdb2-l.org/archives/db2-l.html. From that page select
"Join or Leave the list". The IDUG DB2-L FAQ is at http://www.idugdb2-l.org.
The IDUG List Admins can be reached at [login to unmask email] Find
out the latest on IDUG conferences at http://conferences.idug.org/index.cfm

---------------------------------------------------------------------------------
Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and home page at http://www.idugdb2-l.org/archives/db2-l.html. From that page select "Join or Leave the list". The IDUG DB2-L FAQ is at http://www.idugdb2-l.org. The IDUG List Admins can be reached at [login to unmask email] Find out the latest on IDUG conferences at http://conferences.idug.org/index.cfm

Steen Rasmussen

Re: Spufi authorization ???
(in response to Troy Coleman)
According to what IBM told during the past IOD conference, CS will be
the default in DB2 9.

Steen Rasmussen
CA
Senior Consultant DB2 tools


-----Original Message-----
From: DB2 Data Base Discussion List [mailto:[login to unmask email] On
Behalf Of Troy Coleman
Sent: Friday, December 01, 2006 10:54 AM
To: [login to unmask email]
Subject: Re: [DB2-L] Spufi authorization ???

Hi Wayne,
That is a nice idea.. keeps the phone calls down :-)
It would be nice if IBM defaulted to CS instead of RR.
Thanks for the idea.

Troy Coleman

---------------------------------------------------------------------------------
Welcome to the IDUG DB2-L list. To unsubscribe, go to the archives and home page at http://www.idugdb2-l.org/archives/db2-l.html. From that page select "Join or Leave the list". The IDUG DB2-L FAQ is at http://www.idugdb2-l.org. The IDUG List Admins can be reached at [login to unmask email] Find out the latest on IDUG conferences at http://conferences.idug.org/index.cfm