UNIXPRIV(SUPERUSER.FILESYS) ACCESS(READ) rather than UID(0). If this resource is owned and permitted, when will it be used?

Document ID : KB000012637
Last Modified Date : 14/02/2018
Show Technical Document Details
Question:

The Installation manual for TADz (replacement for TLCMz) is stating to give the started task ID UNIXPRIV(SUPERUSER.FILESYS) ACCESS(READ) rather than UID(0). If this resource is owned and permitted, when will it be used?

Answer:

The UNIXPRIV feature is used for non superuser ACIDs, I.e. for an ACID having a non uid(0) and not being allowed to issue the "su" command. For an ACID with UID(0), the UNIXPRIV checks will not take place.