PM80209: CICS MESSAGES DFHCE3530 AND DFHCE3532 GIVE SPECIFICS ON WHY SIGNON FAILED

A fix is available

APAR status

Closed as program error.

Error description

When a user attempts to signon to CICS, if there are either
userid or password problems, CICS issues messages
.
DFHCE3530  Your userid is invalid. Please retype.
   or
DFHCE3532  Your password is invalid. Please retype.
.
Giving out specific reasons why a signon failed may give hackers
more information than desired. In order to provide enhanced
security, these messages should not provide specific reasons on
why a signon failed.
.
Additional Keywords/Symptoms
KIXREVRJL

Local fix

Problem summary

****************************************************************
* USERS AFFECTED: All.                                         *
****************************************************************
* PROBLEM DESCRIPTION: Messages DFHCE3530 and DFHCE3532        *
*                      require changing.                       *
****************************************************************
* RECOMMENDATION:                                              *
****************************************************************
CICS TS 5.1 no longer supports the Message Editing Utility and
customers want the messages DFHCE3530 and DFHCE3532 to be
changed to make it more difficult for random attacks to indicate
errors with the userid and/or password.

Keywords: msgDFHCE3530 msgDFHCE3532 CE3530 CE3532

Problem conclusion

Messages DFHCE3530 and DFHCE3532 have been changed.

Please see the updated messages in the CICS Transaction Server
for z/OS V5.1 Messages and Codes Manual (GC34-2861-00).

Temporary fix

```
FIX AVAILABLE BY PTF ONLY
```

Comments

APAR Information

APAR number
PM80209
Reported component name
CICS TS Z/OS V5
Reported component ID
5655Y0400
Reported release
800
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt
Submitted date
2013-01-09
Closed date
2013-04-12
Last modified date
2015-03-04

APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:

UK93619

Modules/Macros

```
DFHMECEC DFHMECEE DFHMECEK
```

*Publications Referenced*
GC34286100

Fix information

Fixed component name
CICS TS Z/OS V5
Fixed component ID
5655Y0400

Applicable component levels

R800 PSY UK93619
UP13/04/26 P F304

Fix is available

Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.

[{"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"SSGMGV","label":"CICS Transaction Server"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"5.1","Edition":"","Line of Business":{"code":"LOB35","label":"Mainframe SW"}},{"Business Unit":{"code":"BU054","label":"Systems w\/TPS"},"Product":{"code":"SG19M","label":"APARs - z\/OS environment"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"5.1","Edition":"","Line of Business":{"code":"","label":""}}]

Document Information

Modified date:
04 March 2015

Tips

PM80209: CICS MESSAGES DFHCE3530 AND DFHCE3532 GIVE SPECIFICS ON WHY SIGNON FAILED

A fix is available

Subscribe

APAR status

Closed as program error.

Error description

Local fix

Problem summary

Problem conclusion

Temporary fix

Comments

APAR Information

APAR number

Reported component name

Reported component ID

Reported release

Status

PE

HIPER

Special Attention

Submitted date

Closed date

Last modified date

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:

Modules/Macros

Fix information

Fixed component name

Fixed component ID

Applicable component levels

R800 PSY UK93619

Fix is available

Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.

Document Information

Share your feedback

Need support?