skip book previous and next navigation links
go up to top of book: HP OpenVMS Guide to System SecurityHP OpenVMS Guide to System Security
go to beginning of part: Security for the System AdministratorSecurity for the System Administrator
go to beginning of appendix: Assigning PrivilegesAssigning Privileges
go to previous page: BYPASS Privilege (All)BYPASS Privilege (All)
go to next page: CMKRNL Privilege (All)CMKRNL Privilege (All)
end of book navigation links

CMEXEC Privilege (All)  



The CMEXEC privilege allows the user's process to executethe Change Mode to Executive ($CMEXEC) system service.

This system service lets a process change its access modeto executive mode, execute a specified routine, and then returnto the access mode that was in effect before the system servicewas called. While in executive mode, the process is allowed to executethe Change Mode to Kernel ($CMKRNL) system service.

Grant this privilege only to users who need to gain accessto protected and sensitive data structures and internal functionsof the operating system. If unqualified users have unrestrictedaccess to sensitive data structures and functions, the operatingsystem and service to other users can be easily disrupted. Such disruptionscan include failure of the system, destruction of all system anduser data, and exposure of confidential information.

go to previous page: BYPASS Privilege (All)BYPASS Privilege (All)
go to next page: CMKRNL Privilege (All)CMKRNL Privilege (All)