>> Having your host connected to a network is a security exposure. >> >> FTP on a *non* z/os host is a grave risk, and should be disabled. >> Auditors that don't understand the difference are also risks.
>Huh? Disabling FTP is just one option. Using secure FTP is another. I have obviously not made my point clear. The users using FTP are on our side of the firewall! They are FTP'ng from our z/OS system to our PC's. The distinction is our audit types think it should only be accessible from TSO ids. CICS ids (no TSO segment) work as well. This is internal to internal machine transfer. Is this a security exposure? I don't think so. When in doubt. PANIC!! ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
