{  +---------------------------------------------------------------------------+
   |									       |
   |  [WHO]UAF_MASKS.PAS			   Define Authorization Masks  |
   |  Scott Bailey, Xerox Corporation		     Created October 24, 1990  |
   |									       |
   |  Modification History						       |
   |  V1.0-002 11/09/90 RSB	Add abbreviated alternate days masks	       |
   |  V1.0-001 11/08/90 RSB	Add hour masks				       |
   |  V1.0-000 10/24/90 RSB	Initial version, for VMS V5.4		       |
   |									       |
   +---------------------------------------------------------------------------+

This module defines the contents of the bitmasks utilized in the authorization
database.  Modifications may be required following VMS upgrades.  In particular,
this file is valid only for VMS V5.2 and later.

Definitions are in strict order from bit 0 and increasing sequentially.  Be sure
to include bogus bit definitions as needed to correctly define the entire mask.
}
[ident('V1.0-002'),
environment('uaf_masks'),
inherit('sys$library:starlet')]
module uaf_masks;

var
  hour_table : [readonly] array [0..23] of varying [2] of char value (
  {0}  '0',
  {1}  '1',
  {2}  '2',
  {3}  '3',
  {4}  '4',
  {5}  '5',
  {6}  '6',
  {7}  '7',
  {8}  '8',
  {9}  '9',
  {10} '10',
  {11} '11',
  {12} '12',
  {13} '13',
  {14} '14',
  {15} '15',
  {16} '16',
  {17} '17',
  {18} '18',
  {19} '19',
  {20} '20',
  {21} '21',
  {22} '22',
  {23} '23');

  day_table : [readonly] array [0..7] of varying [10] of char value (
  {0}  'MONDAY',
  {1}  'TUESDAY',
  {2}  'WEDNESDAY',
  {3}  'THURSDAY',
  {4}  'FRIDAY',
  {5}  'SATURDAY',
  {6}  'SUNDAY',
  {7}  'bit7');

  out_day_table : [readonly] array [0..6] of varying [4] of char value (
  {0}  'Mon',
  {1}  'Tue',
  {2}  'Wed',
  {3}  'Thu',
  {4}  'Fri',
  {5}  'Sat',
  {6}  'Sun');
  
  flag_table : [readonly] array [0..31] of varying [20] of char value (
  {0}  'DISCTLY',		{ Control-Y key is initially disabled }
  {1}  'DEFCLI',		{ Only default CLI may be used }
  {2}  'LOCKPWD',		{ Password may not be changed }
  {3}  'RESTRICTED',		{ LGICMD must be executed }
  {4}  'DISUSER',		{ Account is disabled }
  {5}  'DISWELCOME',		{ Welcome message will not be displayed }
  {6}  'DISNEWMAIL',		{ New mail messages will not be displayed }
  {7}  'DISMAIL',		{ Account may not receive mail }
  {8}  'GENPWD',		{ Passwords must be randomly generated }
  {9}  'PWD_EXPIRED',		{ Primary password is expired }
  {10} 'PWD2_EXPIRED',		{ Secondary password is expired }
  {11} 'AUDIT',			{ All activities will be audited }
  {12} 'DISREPORT',		{ Prior login failures will not be reported }
  {13} 'DISRECONNECT',		{ Disconnected processes may not be reattached }
  {14} 'AUTOLOGIN',		{ Login is allowed on autologin ports only }
  {15} 'DISFORCE_PWD_CHANGE',	{ Expired passwords are not changed at login }
  {16} 'CAPTIVE',		{ The account may not access DCL }
  {17} 'DISIMAGE',		{ Non-verb image invocations are not allowed }
  {18} 'DISPWDDIC',		{ Passwords are not checked against dictionary }
  {19} 'DISPWDHIS',		{ Passwords are not checked for reuse }
  {20} 'bit20',
  {21} 'bit21',
  {22} 'bit22',
  {23} 'bit23',
  {24} 'bit24',
  {25} 'bit25',
  {26} 'bit26',
  {27} 'bit27',
  {28} 'bit28',
  {29} 'bit29',
  {30} 'bit30',
  {31} 'bit31');

  priv_table : [readonly] array [0..63] of varying [10] of char value (
  {0}  'CMKRNL',		{ May change mode to kernel }
  {1}  'CMEXEC',		{ May change mode to executive }
  {2}  'SYSNAM',		{ May insert in system logical name table }
  {3}  'GRPNAM',		{ May insert in group logical name table }
  {4}  'ALLSPOOL',		{ May allocate spooled device }
  {5}  'DETACH',		{ May create detached processes }
  {6}  'DIAGNOSE',		{ May diagnose devices }
  {7}  'LOG_IO',		{ May do logical I/O }
  {8}  'GROUP',			{ May affect other processes in same group }
  {9}  'ACNT',			{ May suppress accounting message }
  {10} 'PRMCEB',		{ May create permanent common event clusters }
  {11} 'PRMMBX',		{ May create permanent mailbox }
  {12} 'PSWAPM',		{ May change process swap mode }
  {13} 'ALTPRI',		{ May set any priority value }
  {14} 'SETPRV',		{ May set any privilege bits }
  {15} 'TMPMBX',		{ May create temporary mailbox }
  {16} 'WORLD',			{ May affect other processes in the world }
  {17} 'MOUNT',			{ May execute mount ACP functions }
  {18} 'OPER',			{ Operator privilege }
  {19} 'EXQUOTA',		{ May exceed quotas }
  {20} 'NETMBX',		{ May create network device }
  {21} 'VOLPRO',		{ May override volume protection }
  {22} 'PHY_IO',		{ May do physical I/O }
  {23} 'BUGCHK',		{ May make bug check error log entries }
  {24} 'PRMGBL',		{ May create permanent global sections }
  {25} 'SYSGBL',		{ May create system wide global sections }
  {26} 'PFNMAP',		{ May map to section by PFN }
  {27} 'SHMEM',			{ May allocate structures in shared memory }
  {28} 'SYSPRV',		{ Eligible for system protection field }
  {29} 'BYPASS',		{ May bypass UIC based protection }
  {30} 'SYSLCK',		{ May create system wide locks }
  {31} 'SHARE',			{ May assign channel to non-shared device }
  {32} 'UPGRADE',		{ May upgrade classification }
  {33} 'DOWNGRADE',		{ May downgrade classification }
  {34} 'GRPPRV',		{ Group access via system protection field }
  {35} 'READALL',		{ Read access to everything }
  {36} 'bit36',
  {37} 'bit37',
  {38} 'SECURITY',		{ May perform security functions }
  {39} 'bit39',
  {40} 'bit40',
  {41} 'bit41',
  {42} 'bit42',
  {43} 'bit43',
  {44} 'bit44',
  {45} 'bit45',
  {46} 'bit46',
  {47} 'bit47',
  {48} 'bit48',
  {49} 'bit49',
  {50} 'bit50',
  {51} 'bit51',
  {52} 'bit52',
  {53} 'bit53',
  {54} 'bit54',
  {55} 'bit55',
  {56} 'bit56',
  {57} 'bit57',
  {58} 'bit58',
  {59} 'bit59',
  {60} 'bit60',
  {61} 'bit61',
  {62} 'bit62',
  {63} 'bit63');
end. {module uaf_masks}