Posted by Grant Foraker on November 30, 2005 at 12:22:44:
I still have "issues" with the SECURE/PASSWORD code in QMONITOR.
---------------------------------------------------------------------
if Strip(PASSWORD) ne ""
WORK$ = Sub(PASSWORD,1,16)+SECNAME$ ! 00.06
else
WORK$ = String(" ",16) + SECNAME$ ! 05.04
endif
---------------------------------------------------------------------
First, I have one customer whose in-house security uses PWORD$. And I use the following to make their security work.
---------------------------------------------------------------------
LET WORK$ = SUB(SECNAME$,1,16) + SUB(PWORD$,1,16)
---------------------------------------------------------------------
Second, the SA feature, in the standard QMONITOR, displays blanks instead of the SECNAME$. With my customer's logic in place, the SA displays the SECNAME$ as it should and used to.
I know that if IDMAINT is in play (I uses it for CometAnywhere only) then the IDMAINT User Name is placed in the first 16 bytes by SECURE and is displayed by SA. This tells me which remote machine is attached and what program they may be running but not what PWORD$ they entered from READY.
For instance, it does not tell that the remote WA01 machine, allowed to update Washington Employees using EM, was accessing the California or Executive payrolls, because they had used a PWORD$ they shouldn't know or had guessed.
SA needs to show both the IDMAINT User Name and the SECNAME$. QMONITOR needs to put PWORD$ where it can be accessed. And, it would be nice is all three pieces were the full 32 characters.