On Thu, 6 Dec 2007 07:27:45 -0600 "Support, DUNNIT SYSTEMS LTD." <[EMAIL PROTECTED]> wrote:
:>Running z/OS 1.8 from ADCD on a FlexEs box. :>We are about to enable remote external access to our z/OS system. Security :>is lousy as it is. The network router does port forwarding for Telnet to our :>z/OS system. That brings up the ADCD default login screen, which on its own :>offers no security. For example, by ADCD install default, you can logon :>straight into CICS without any signon. :>Is there some simple VTAM session application readily available with ADCD that :>can be automatically started for a terminal session when a connection is made :>and force prompting for a valid RACF ID and password? :>Are there any other security holes that need to be plugged under this scenario :>of router port forwarding to our FlexEs z/OS system? Why not activate your routers VPN function? Or use security by obscurity - change the application names. -- Binyamin Dissen <[EMAIL PROTECTED]> http://www.dissensoftware.com Director, Dissen Software, Bar & Grill - Israel Should you use the mailblocks package and expect a response from me, you should preauthorize the dissensoftware.com domain. I very rarely bother responding to challenge/response systems, especially those from irresponsible companies. ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
