Results 1 to 3 of 3
  1. #1
    Join Date
    Sep 2009

    Unanswered: DB2 directory permissions

    I'm doing a security audit and found the following DB2 related world writable directories on my servers

    drwxrwsrwt 2 db2inst1 db2iadm1 4096 /home/db2inst1/sqllib/db2dump
    drwxrwsrwx 2 db2inst1 db2iadm1 4096 /home/db2inst1/sqllib/tmp
    drwxrwxrwt 2 root db2iadm1 4096 /var/lum

    what are they for? should I be concerned?

  2. #2
    Join Date
    May 2003
    /home/db2inst1/sqllib/db2dump is where DB2 writes diagnostic information. The only potential probelm would be if that writting to that directory causes the instance home directory to fill up, which can sometimes cause problems for the DB2 instance.

    I don't know what /home/db2inst1/sqllib/tmp is, but usually tmp directors have no security on them. I assume there is nothing in that directory, or it is of no concern (other than filling up the instance home directory).

    Don't know about /var/lum. What is in that directory?
    M. A. Feldman
    IBM Certified DBA on DB2 for Linux, UNIX, and Windows
    IBM Certified DBA on DB2 for z/OS and OS/390

  3. #3
    Join Date
    Sep 2009
    Dig some checking... looks like /var/lum is license key directory for DB2.

    Thanks for the info.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts