Even more relevant, check out http://bit.ly/2Sk5rwY, winner of Best Session at SHARE Winter 2017. I was there, sitting next to a suit (rare at SHARE) who about every five minutes muttered under his breath "Oh, Jesus."
Saying "this can't happen if your RACF is properly configured" is like saying "you don't need seat belts -- just don't run into anything while you drive." EVERYONE's RACF is improperly configured. Ask any professional pen tester if he has ever found a system that he could not break into, starting from just basic user access. And not all threats are external. I am writing this from SHARE Phoenix. If you are not taking "small system" type threats to your mainframe VERY seriously you are living in a fantasy world. Charles -----Original Message----- From: IBM Mainframe Discussion List [mailto:[email protected]] On Behalf Of Jack J. Woehr Sent: Wednesday, March 13, 2019 8:25 AM To: [email protected] Subject: Re: Can a JBOSS virus attack infect a mainframe? On 3/13/2019 8:10 AM, Bill Bishop (TMNA) wrote: > Information Security is asking Mainframe Management if JBOSS virus attacks > can infect a mainframe. And if you want to give your Sec guys and gals conniption fits, point 'em to our good friend Bigendian Smalls's website about hacking mainframes. https://www.bigendiansmalls.com/ ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
