On Thursday, 01/10/2008 at 04:22 EST, Jerry Whitteridge <[EMAIL PROTECTED]> wrote:
> Is there an alternative to Telnet as due to PCI issues all non secure > access is supposed to be disabled - this means Telnet (our z/OS TN3270 > is done over SSL due to this) ? You can use z/VM's TN3270 SSL support. > The issue is more along the lines of user ID maintaince in RACF and a > mind set I refer to in my reply to Mark. I read that, but I didn't understand it. Perhaps it is my ignorance of console servers that is the issue. > Unfortunately access to the HMC is even more restricted as I can't > control access at the lpar level and we are no about to allow the chance > of a unix admin doing something to the z/OS side of the mainframe. My understanding is that users can be restricted to specific functions for specific LPARs. The HMC even has a built-in firewall to restrict network access. The HMC is a powerful piece of equipment and has powerful controls available to ensure they are used only for Good. The thing is, everyone just locks it in a vault, where it sits and waits for someone to love it. > I need to look at the VT220 support more, but would love it if there was > a VM server that could do the function of the HMC VT220 in the same > fashion. My other post addresses a way to do this. Unlike physically discrete boxen, virtual machines are on the same box and can be given access to the same resources. We make up for it by not having, as John says, the moral equivalent of virtual serial ports. Alan Altmark z/VM Development IBM Endicott ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
