Ansicht
Dokumentation

ABENNEWS-740_SP08-SLIN_SEC - NEWS-740 SP08-SLIN SEC

RFUMSV00 - Advance Return for Tax on Sales/Purchases   ABAP Short Reference  
This documentation is copyright by SAP AG.

Security Checks in Release 7.40, SP08

The security checks in the extended program check were revised as follows in Release 7.40, SP08, alongside general improvements in data flow analysis and performance:

Use of System Fields

The system fields sy-host, sy-sysid, and sy-mandt in logical expressions can indicate potential back doors, like when using sy-uname, and are now checked accordingly.

It is possible to define additional system fields, for which this check is performed, by implementing BAdI SLIN_BADI_SEC_BACKDOOR.

Security-Relevant Function Modules

The check that ensures that the return code sy-subrc is evaluated when a security-relevant function module (such as AUTHORITY_CHECK_TCODE or FILE_VALIDATE_NAME) is called was revised so that the list of predefined function modules can be expanded using the BAdI SLIN_BADI_SEC_PROCEDURES. The program RSLIN_SEC_DISPLAY_SECREL_PROC displays the full list.

Administration Transaction

The new transaction SLIN_ADMIN is used for the administration of the extended program check and the security checks.

CPI1466 during Backup   SUBST_MERGE_LIST - merge external lists to one complete list with #if... logic for R3up  
This documentation is copyright by SAP AG.

Length: 2386 Date: 20240418 Time: 051310     sap01-206 ( 31 ms )