[Default] On 7 Jun 2019 09:26:29 -0700, in bit.listserv.ibm-main [email protected] (Seymour J Metz) wrote:
>How many vulnerabilities have you seen that did not come down to people? Those >sysprogs are just the tip of the iceberg as far as configuration, enforcement, >management, policy, procedure, protocol and training vulnerabilities are >concerned. Yes, I've seen code vulnerabilities, but they're ju8st noise >compared to the other isswues. > >I come at this from the other end; when I had RACF SPECIAL I refused to give >myself UID(0) because it was an unnecessary risk. Are the tools to set up and administer z/OS systems as easy to use as those available for setting up and administering Linux systems? Unix system? Windows systems? Is an Apache server running on a z series mainframe any more secure than one running on Linux? To the extent Mainframes are available from other vendors such as Unisys, how does their security compare? Is z/TPF as secure as z/OS? How about z/VM and z/VSE? Clark Morris ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
