friedkiwi/ibm-information-center
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
8826eae394
ibm-information-center/dist/eclipse/plugins/i5OS.ic.rzakz_5.4.0.1/rzakzqscanfsctl.htm

173 lines
11 KiB
HTML
Raw Normal View History

Add readme and dist folders
2024-04-02 14:02:31 +00:00
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE html
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html lang="en-us" xml:lang="en-us">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="security" content="public" />
<meta name="Robots" content="index,follow" />
<meta http-equiv="PICS-Label" content='(PICS-1.1 "http://www.icra.org/ratingsv02.html" l gen true r (cz 1 lz 1 nz 1 oz 1 vz 1) "http://www.rsac.org/ratingsv01.html" l gen true r (n 0 s 0 v 0 l 0) "http://www.classify.org/safesurf/" l gen true r (SS~~000 1))' />
<meta name="DC.Type" content="concept" />
<meta name="DC.Title" content="Security system values: Scan control" />
<meta name="abstract" content="Specifies scan control options. (QSCANFSCTL)" />
<meta name="description" content="Specifies scan control options. (QSCANFSCTL)" />
<meta name="DC.Relation" scheme="URI" content="rzakzqscanfs.htm" />
<meta name="DC.Relation" scheme="URI" content="rzakzsecurityoverview.htm" />
<meta name="DC.Relation" scheme="URI" content="rzakzlocksecurity.htm" />
<meta name="DC.Relation" scheme="URI" content="rzakzqscanfs.htm" />
<meta name="DC.Relation" scheme="URI" content="../ifs/rzaaxbasics.htm" />
<meta name="DC.Relation" scheme="URI" content="../ifs/rzaaxtype2.htm" />
<meta name="DC.Relation" scheme="URI" content="rzakzfinder.htm" />
<meta name="copyright" content="(C) Copyright IBM Corporation 1998, 2006" />
<meta name="DC.Rights.Owner" content="(C) Copyright IBM Corporation 1998, 2006" />
<meta name="DC.Format" content="XHTML" />
<meta name="DC.Identifier" content="rzakzqscanfsctl" />
<meta name="DC.Language" content="en-us" />
<!-- All rights reserved. Licensed Materials Property of IBM -->
<!-- US Government Users Restricted Rights -->
<!-- Use, duplication or disclosure restricted by -->
<!-- GSA ADP Schedule Contract with IBM Corp. -->
<link rel="stylesheet" type="text/css" href="./ibmdita.css" />
<link rel="stylesheet" type="text/css" href="./ic.css" />
<title>Security system values: Scan control</title>
</head>
<body id="rzakzqscanfsctl"><a name="rzakzqscanfsctl"><!-- --></a>
<!-- Java sync-link --><script language="Javascript" src="../rzahg/synch.js" type="text/javascript"></script>
<h1 class="topictitle1">Security system values: Scan control</h1>
<div><p>Specifies scan control options. (QSCANFSCTL)</p>
<p><span class="uicontrol">Scan control</span>, also known as <span class="uicontrol">QSCANFSCTL</span>,
is a member of the security category of i5/OS™ system values. You can use this system
value to specify whether the default scan control options are used or to specify
specific scan control options. To learn more, keep reading.</p>
<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" frame="border" border="1" rules="all"><thead align="left"><tr><th colspan="2" valign="top" class="firstcol" id="d0e34">Quick reference</th>
</tr>
</thead>
<tbody><tr><th valign="top" class="firstcol" id="d0e38" headers="d0e34 ">Location</th>
<td valign="top" headers="d0e38 d0e34 ">In iSeries™ Navigator,
select your system, <span class="menucascade"><span class="uicontrol"></span> &gt; <span class="uicontrol">Configuration
and Service</span> &gt; <span class="uicontrol">System Values</span> &gt; <span class="uicontrol">Security</span> &gt; <span class="uicontrol">Scan</span></span></td>
</tr>
<tr><th valign="top" class="firstcol" id="d0e56" headers="d0e34 ">Special authority</th>
<td valign="top" headers="d0e56 d0e34 ">All object (*ALLOBJ) and security administrator (*SECADM)</td>
</tr>
<tr><th valign="top" class="firstcol" id="d0e61" headers="d0e34 ">Default value</th>
<td valign="top" headers="d0e61 d0e34 ">Use default scan control options</td>
</tr>
<tr><th valign="top" class="firstcol" id="d0e66" headers="d0e34 ">Changes take effect</th>
<td valign="top" headers="d0e66 d0e34 ">Immediately</td>
</tr>
<tr><th valign="top" class="firstcol" id="d0e71" headers="d0e34 ">Lockable</th>
<td valign="top" headers="d0e71 d0e34 ">Yes Lock function of security-related system values<br /><img src="rzakz503.gif" alt="Lockable system value" /><br /> (Click for details)</td>
</tr>
</tbody>
</table>
</div>
<div class="section"><h4 class="sectiontitle">What can I do with this system value?</h4><p>Use this system
value to specify scanning options for the Use registered exit programs to
scan the root (/), QOpenSys, and user-defined file systems (QSCANFS) system
value. These options control the integrated file system scanning on the system
when exit programs are registered with any of the integrated file system scan-related
exit points.</p>
<ul><li><span class="uicontrol">Use default scan control options (*NONE specified)</span> <p>Indicates
that the system uses the following scanning options when calling the registered
exit programs: </p>
<ul><li>Perform write access upgrades</li>
<li>Fail close request if scan fails during close</li>
<li>Scan on next access after object has been restored</li>
</ul>
</li>
<li><span class="uicontrol">Use specified scan control options</span> <p>Allows you
to select which scanning options the system should use when calling the registered
exit programs. Select from the following:</p>
<ul><li><span class="uicontrol">Scan accesses through file servers only (*FSVRONLY specified)</span> <p>By
selecting this option, only accesses from a file server to the iSeries server
are scanned. Accesses through the Network File System (NFS) are scanned as
well as other file server methods. However, native or direct connections to
the iSeries server
are not scanned. If this option is not selected, all accesses will be scanned
no matter if you connect directly to the iSeries or through a file server.</p>
</li>
<li><span class="uicontrol">Fail request if exit program fails (*ERRFAIL specified)</span> <p>By
selecting this option, you are specifying to fail the request or operation
which triggered the call to the exit program, if there are errors when the
exit program is called. Possible errors may be that the program is not found
or the program is not coded requiredly to handle the exit program request. If
this happens, the requested operation receives an indication that the object
failed a scan. If this option is not selected, the system will skip the failing
exit program and treat the object as if it was not scanned by this exit program.</p>
</li>
<li><span class="uicontrol">Perform write access upgrades (*NOWRTUPG not specified)</span> <p>By
selecting this option (*NOWRTUPG not specified), you are specifying to allow
the iSeries system
to upgrade the access for the scan descriptor passed to the exit program to
include write access, if possible. Use this option if you want the exit program
to be able to fix or modify objects even though they were originally opened
with read-only access. If this option is not selected, the system will not
upgrade the access to include write access.</p>
</li>
<li><span class="uicontrol">Use 'only when objects have changed' attribute to control scan
(*USEOCOATR specified)</span> <p>By selecting this option, the system
will use the specification of the 'object change only' attribute to only scan
the object if it has been modified (not also because scan software has indicated
an update). If this is not specified, this 'object change only' attribute
will not be used, and the object will be scanned after it is modified and
when scan software indicates an update.</p>
</li>
<li><span class="uicontrol">Fail close request if scan fails during close (*NOFAILCLO not
specified)</span> <p>When this option is selected (*NOFAILCLO not specified),
the system will fail the close request if an object failed a scan during close
processing. This option only applies to close requests.</p>
<p>If this option
is <span class="uicontrol">not</span> selected (*NOFAILCLO specified), the system
will not fail the close request if an object failed a scan even if the <span class="uicontrol">Fail
request if exit program fails</span> option is selected.</p>
<p>For example,
if the <span class="uicontrol">Fail request if exit program fails</span> option is
selected and this option is not selected, the system will not send a failure
indication even though an object failed a scan during close processing. But,
the object will be marked as failing a scan.</p>
</li>
<li><span class="uicontrol">Scan on next access after object has been restored (*NOPOSTRST
not specified)</span> <p>By selecting this option (*NOPOSTRST not specified),
objects will be scanned at least once after being restored no matter what
its object scan attribute is. If the object scan attribute is that 'the object
will not be scanned,' the object will be scanned once after being restored.
If the object scan attribute is that 'the object will only be scanned if it
has been modified since the last time it was scanned,' the object will be
scanned after being restored because the restore will be treated as a modification
to the object.</p>
<p>If this option is not selected (*NOPOSTRST specified),
objects will not be scanned just because they are restored. Scanning depends
on the object's scanning attribute.</p>
<p>In general, it is good practice
to scan restored objects at least once. However, you may not select this option
if you know that the objects being restored were scanned before they were
saved or they came from a trusted source.</p>
</li>
</ul>
</li>
</ul>
<p>For more information, see Integrated file system concepts. Only stream
file objects that are in Type 2 directories are scanned. For more information
on Type 2 directories, see *TYPE2 directories.</p>
</div>
<div class="section"><h4 class="sectiontitle">Where can I get more information about this system value?</h4><p>To
learn more, go to the security system values overview topic. If you are looking
for a specific system value or category of system values, try using the i5/OS system
value finder.</p>
</div>
</div>
<div><div class="relconcepts"><strong>Related concepts</strong><br />
<div><a href="rzakzqscanfs.htm" title="Specifies whether to scan file systems or not. (QSCANFS)">Security system values: Use registered exit programs to scan the root (/), QOpenSys, and user-defined file systems</a></div>
<div><a href="rzakzsecurityoverview.htm" title="Use i5/OS security system values to control object, user, and system security values.">System values: Security overview</a></div>
<div><a href="rzakzlocksecurity.htm" title="Find information about how to lock and unlock system values. Only some system values can be locked. This will provide you with a description of the lock function, what system values can be locked, and how to lock and unlock them.">Lock function of security-related system values</a></div>
<div><a href="../ifs/rzaaxbasics.htm">Integrated file system concepts</a></div>
<div><a href="../ifs/rzaaxtype2.htm">*TYPE2 directories</a></div>
</div>
<div class="relinfo"><strong>Related information</strong><br />
<div><a href="rzakzfinder.htm">System value finder</a></div>
</div>
</div>
</body>
</html>
Reference in New Issue Copy Permalink