I would be "VERY" interested if he can produce the document, I just looked thru all IBM's white papers on OSA & Security, and only found the opposite situation, if you can convince him to produce, then let me know I will take a look at it also.
Ken Dreger
At 07:48 AM 6/19/2003 -0500, you wrote:
I've haven't heard of anything. I have a change control to start using an OSA in addition to our Cisco 7513 (on OS/390, z/VM & Linux). Our "security expert" put a hold on the changed due to "an IBM whitepaper" which supposedly says that using an OSA can compromise security. He cannot produce the "whitepaper" right now. He's being a ****.
-- John McKown Senior Systems Programmer UICI Insurance Center Applications & Solutions Team +1.817.255.3225
This message (including any attachments) contains confidential information intended for a specific individual and purpose, and its' content is protected by law. If you are not the intended recipient, you should delete this message and are hereby notified that any disclosure, copying, or distribution of this transmission, or taking any action based on it, is strictly prohibited.
> -----Original Message----- > From: Alan Altmark [mailto:[EMAIL PROTECTED] > Sent: Thursday, June 19, 2003 7:45 AM > To: [EMAIL PROTECTED] > Subject: Re: Security "problem" when using OSA? > > > On Wednesday, 06/18/2003 at 03:41 EST, "McKown, John" > <[EMAIL PROTECTED]> wrote: > > Has anybody heard of any kind of compromise that exists > when an OSA in > Linux > > instead of routing via z/VM's TCPIP stack? > > Is this just paranoia, John, or have you heard something? To > my knowledge > there are no special or additional risks when using Linux as a router. > (That doesn't mean there' *aren't* any, it just means I have > no knowledge > of them.) > > Alan Altmark > Sr. Software Engineer > IBM z/VM Development >
Kenneth G. Dreger www.laprivateeye.com Sr. Systems Programmer
z/OS Systems & support, Capacity & Performance reporting, Linux 390 systems support, Web page consulting, Systems Security Member Southern California HTCIA Member Of Orange County ISSA Personal Home page: http://www.ken.dreger.com Contact: [EMAIL PROTECTED]
