Ansicht
Dokumentation
ABENNEWS-740_SP08-SLIN_SEC - NEWS-740 SP08-SLIN SEC
RFUMSV00 - Advance Return for Tax on Sales/Purchases ABAP Short ReferenceThis documentation is copyright by SAP AG.
Security Checks in Release 7.40, SP08
The security checks in the
extended
program check were revised as follows in Release 7.40, SP08, alongside general improvements in data flow analysis and performance:
Use of System Fields
The system fields sy-host, sy-sysid, and sy-mandt in logical expressions can indicate potential back doors, like when using sy-uname, and are now checked accordingly.
It is possible to define additional system fields, for which this check is performed, by implementing
BAdI SLIN_BADI_SEC_BACKDOOR.
Security-Relevant Function Modules
The check that ensures that the return code sy-subrc is evaluated when a security-relevant function
module (such as AUTHORITY_CHECK_TCODE or FILE_VALIDATE_NAME) is called was revised so that the list of predefined function modules can be expanded using the
BAdI SLIN_BADI_SEC_PROCEDURES. The program
RSLIN_SEC_DISPLAY_SECREL_PROC displays the full list.
Administration Transaction
The new transaction SLIN_ADMIN is used for the administration of the extended program check and the security checks.
CPI1466 during Backup SUBST_MERGE_LIST - merge external lists to one complete list with #if... logic for R3up
This documentation is copyright by SAP AG.
Length: 2386 Date: 20240418 Time: 051310 sap01-206 ( 31 ms )