Security issues, Execution – HP Integrity NonStop H-Series User Manual

Running SWID

Software Identification (SWID) User’s Guide— 527243-004

2 -5

Security Issues

SWID Banner

SWID displays its banner and prompts you with

Enter fileset>

. Entering

-help

causes SWID to display the invocation syntax.

File Information

A line read from the IN file is ignored if the first nonspace character is “an exclamation
point (!). This feature enables the command files (IN files) to contain comments.

When no files match a specified file set or when the input file set is invalid, SWID
responds with the appropriate error message.

Usage Considerations

•

TACL uses the home terminal as the default IN and OUT file.

•

A SWID invocation can have an IN file and one or more run-line arguments. The
run-line arguments are processed first, and then the input is taken from the IN file.

•

If the IN file is a terminal and file sets are given on the run line, SWID does not
prompt you on the terminal.

•

Pressing the Ctrl-Y or Break key terminates the interactive session and returns
control of the terminal to TACL.

•

Switches can be used only as run-line arguments. Switches are not allowed in the
IN file and must precede the file sets in run-line arguments.

•

SWID is not case-sensitive to switches or file sets. DEFINEs cannot be used as
file sets.

•

For most object files, SWID needs to create a temporary copy of the file for
fingerprinting. By default, SWID creates the temporary file on the same disk as the
original file. However, you can specify a different disk by using the parameter
SWAPVOL. For example, to fingerprint all files in the subvolume
$SYSTEM.SYSTEM create the temporary files on $DATA, at your TACL prompt,
enter:

Security Issues

SWID operates within the standard Guardian file security system.

Execution

Users can invoke SWID only if they have the access to execute the SWID object file.
The security access level is set when SWID is installed.

1> PARAM SWAPVOL $DATA
2> SWID $SYSTEM.SYSTEM.*