Re: And the survey says...

Vista 3270 by Tom Brennon - price is right and features are good. Plus it does what you want it to without searching forever in help text. Lou -- Artificial Intelligence is no match for Natural Stupidity - Unknown On Tue, Apr 27, 2021 at 3:11 PM Gibney, Dave wrote: > We use QWS3270 Secure.

Re: No file permissions or super user authority for executing a shell script

The simple answer is NO. Lou -- Artificial Intelligence is no match for Natural Stupidity - Unknown On Thu, Apr 1, 2021 at 3:01 PM Robert Hahne wrote: > Greetings , > > Is there a way a user can be allowed to execute a unix shell script in > batch without changing the file permission bits

Re: ISPF 3.4 DSLIST questions

One call to RACF - according to the description for the STATUS=ACCESS keyword on the RACROUTE REQUEST=AUTH macro in the RACROUTE manual: ACCESS - The request is simply to return the user's highest current access to the resource specified. Upon successful completion, the user's access is returned

Re: COBOL Question

Bob, Would you rather code the select as a series of nested if-then-else? Lou On Sun, Jun 7, 2020 at 1:35 PM Bob Bridges wrote: > The only language I can think of off-hand that doesn't require some sort > of END to close a DO (I'm sure there are others) is ISPF. But, in REXX at > least, I

Re: Why ICH0007I and how fix?

You add the node where node is the local JES node name as a member in the profile in the RACFVARS class. All this does is specify that the node is local to the RACF data base. Lou -- Artificial Intelligence is no match for Natural Stupidity - Unknown On Wed, May 20, 2020 at 4:21 PM Charles

Re: JESSPOOL problem accessing SYSLOG

e a spool do > they? > > Lennie Dymoke-Bradshaw | Security Lead | RSM Partners Ltd > Web: www.rsmpartners.com > ‘Dance like no one is watching. Encrypt like everyone is.’ > > -Original Message- > From: IBM Mainframe Discussion List On Behalf > Of Lou Lose

Re: JESSPOOL problem accessing SYSLOG

everyone is.’ > > -Original Message----- > From: IBM Mainframe Discussion List On Behalf > Of Lou Losee > Sent: 20 April 2020 21:24 > To: IBM-MAIN@LISTSERV.UA.EDU > Subject: Re: [IBM-MAIN] JESSPOOL problem accessing SYSLOG > > I can't answer this right now, as

Re: JESSPOOL problem accessing SYSLOG

e Dymoke-Bradshaw | Security Lead | RSM Partners Ltd > > Web: www.rsmpartners.com > ‘Dance like no one is watching. Encrypt like everyone is.’ > > -Original Message- > From: IBM Mainframe Discussion List On Behalf > Of Lou Losee > Sent: 20 April 2020 20:29 >

Re: JESSPOOL problem accessing SYSLOG

om > ‘Dance like no one is watching. Encrypt like everyone is.’ > > -Original Message----- > From: IBM Mainframe Discussion List On Behalf > Of Lou Losee > Sent: 20 April 2020 20:29 > To: IBM-MAIN@LISTSERV.UA.EDU > Subject: [IBM-MAIN] JESSPOOL problem accessing SYSLOG >

JESSPOOL problem accessing SYSLOG

I posted this to RACF-L earlier, but have not received a response to help solve the problem so I have decided to cross-post here. I have a problem accessing the SYSLOG from SDSF on one LPAR. The problem appears to be caused by the second qualifier in the RACHECK request being *BYPASS* when it

Re: ZOS 1.13 2.2 2.3 in the same sysplex

the error description indicates that 1.13 is too downlevel for the aggregate version: Description: New version aggregates cannot be processed on this system. Action: If this is a primary mount, re-issue the mount on a system that supports higher version aggregates. If this is a catchup mount, no

Re: Just how secure are mainframes? | Trevor Eddolls

So does IBM Lou On Tue, Jun 4, 2019 at 6:38 AM Bill Johnson < 0047540adefe-dmarc-requ...@listserv.ua.edu> wrote: > How do you demonstrate something that hasn’t happened? LOL > I see your company sells security services too. > > > Sent from Yahoo Mail for iPhone > > > On Tuesday, June 4,

Re: Fwd: Just how secure are mainframes? | Trevor Eddolls

Just because it has not been brought up and I think it is pertinent to this discussion. It is obvious that IBM has vulnerabilities in z/OS. The existence of the integrity APARs are proof of that. There may not be as many as the fixes released for Windows or Mac, but they do exist. Lou --

Re: Can backup mechanisms be used to steal RACF database? was Re: mainframe hacking "success stories"?

What causes IBM integrity (code-based) APARs to be generated? Surely not all of them are found internally. The thing is, with the way integrity APARs are handled the source of the problem is never disclosed. Many are, I believe, zero-days, that would cause a hack if found by the wrong person.

Re: what is racinit error 32?

Might the code be displayed in decimal in which case it is equivalent to x'20' which then indicates RACF is not active. Lou -- Artificial Intelligence is no match for Natural Stupidity - Unknown On Wed, Apr 17, 2019 at 12:08 PM ITschak Mugzach wrote: > I am trying to login to tso and get

Re: Code vulnerability

Scott, Unless your code runs authorized, is an SVC or a PC I don't think it can cause vulnerabilities that threaten your system. The system does a pretty good job of isolating problem state code such that it will not cause problems. Lou -- Artificial Intelligence is no match for Natural

Re: IRRDBU00 format

Chapter 9 in this book: https://www-01.ibm.com/servers/resourcelink/svc00100.nsf/pages/zOSV2R3sa232288/$file/icha300_v2r3.pdf RACF MAcros and Interfaces Lou -- Artificial Intelligence is no match for Natural Stupidity - Unknown On Tue, Nov 27, 2018 at 7:21 AM Sankaranarayanan, Vignesh <

Re: Why are sophisticated system-level coding examples not available? [was: RE: Recommended method for accessing secondary access spaces]

Just my $.02... Back when I was learning to program I was told the best way to learn to program well was to read well-written code. Lou -- Artificial Intelligence is no match for Natural Stupidity - Unknown On Mon, Nov 12, 2018 at 4:21 PM Paul Gilmartin <

Re: eWEEK Article highlights weaknesses in Mainframe Security

Not just IBM, but any vendor that has a product that includes system level code (APF authorized, Key 0 or supervisor state). Lou -- Artificial Intelligence is no match for Natural Stupidity - Unknown On Tue, Oct 30, 2018 at 1:43 PM Seymour J Metz wrote: > If there were no unpatched security

Re: eWEEK Article highlights weaknesses in Mainframe Security

Hi Eric, The article is not talking about zero-day vulnerabilities with respect to RACF or the other ESMs. A prime example of the type of vulnerability the article is referring to would be the recent discussion of the SVC that put the caller into key-zero supervisor state. A vulnerability like

Re: REXX to change Date in PDS member

My take from reading the OPs post is that he wants to change some JCL, therefore change a record not statistics. Lou -- Artificial Intelligence is no match for Natural Stupidity - Unknown On Mon, Jun 11, 2018 at 2:45 PM Seymour J Metz wrote: > Does the OP want to change a record containing

Re: TSO fullscreen logon

Tony > > > > -Original Message- > From: IBM Mainframe Discussion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On > Behalf Of Lou Losee > Sent: Wednesday, April 25, 2018 9:14 AM > To: IBM-MAIN@LISTSERV.UA.EDU > Subject: TSO fullscreen logon > > Hi, > Thi

TSO fullscreen logon

Hi, This may be a silly question, but the saying is that the only silly question is the one you don't ask. I have been RTFM, but cannot find how to activate fullscreen logon via TSO. Can someone provide a pointer? Thanks, Lou

Re: IBMVSM,ZOSMIGV2R3_NEXT_VSM_USERKEYCOMM

Lionel, Couldn't it be the case that IBM knows where the use of common storage occurred but not who the offender is? Lou -- Artificial Intelligence is no match for Natural Stupidity - Unknown On Fri, Apr 6, 2018 at 9:31 AM, Dyck, Lionel B. (TRA) wrote: > IBM provides a

Re: Software Delivery on Tape to be Discontinued

Curtis, Yes you are correct that you have to initiate your trust somewhere. The paradigm is that you trust the vendor that delivers the CA certificates to you (e.g., Mozilla, Microsoft, IBM, etc.) Hand delivering keys defeats the purpose of using certificates. If you were going to hand deliver

Re: Mini recovery system build

http://mzelden.com/mvsutilr.html#jobs Lou -- Artificial Intelligence is no match for Natural Stupidity - Unknown On Wed, Apr 4, 2018 at 7:20 AM, Tony Thigpen wrote: > I have been tasked with bringing our mini recovery system to a more > current level. It's 'way back

Re: Health Check JES_NJE_SECURITY

Hi David, The problem with that approach is that checks against the profile will also be made for NJE jobs that are not local to the RACF database. The purpose of the profile is to allow JES/RACF to make a decision as to whether the submitter is a local user. Lou -- Artificial Intelligence is

Re: Passing data from step-to-step in single job using memory??

You may not have heard of B1 security, but I would suppose you have heard of Common Criteria which also performs covert channel analysis. Lou -- Artificial Intelligence is no match for Natural Stupidity - Unknown On Mon, Dec 4, 2017 at 6:55 AM, Peter Relson wrote: > One

Re: Db2! was: NODE.js for z/OS

All the latest Db2 books refer to Db2 not DB2. Lou Virus-free. www.avast.com

Re: Unix-question

http://tldp.org/LDP/lpg/node11.html examples using C -- Artificial Intelligence is no match for Natural Stupidity - Unknown On Tue, Aug 29, 2017 at 12:51 PM, scott Ford wrote: > So my question is where do I find a example of a pipe call and retrieve > ...this would help

Re: Program now working, but why?

What are the details of the 0C4 in the assembler program: - what was it trying to access? - was it a read or a write? Lou -- Artificial Intelligence is no match for Natural Stupidity - Unknown On Wed, Feb 8, 2017 at 9:26 AM, Peter Ten Eyck < peter.tene...@americannational.com> wrote: > Job

Re: RACF questio

<idfzos...@gmail.com> wrote: > Lou, > > We are seeing all RACF commands failing using r_admin from a STC, but we > invoke an ID with SPECIAL, but I noticed the STC ID has Trusted=no... > > Scott > > On Tuesday, June 28, 2016, Lou Losee <llo...@gmail.com> wrote: >

Re: RACF questio

What RACF function are you invoking? Regards, Lou -- Artificial Intelligence is no match for Natural Stupidity - Unknown On Tue, Jun 28, 2016 at 9:35 AM, Scott Ford wrote: > All, > > I know there's a RACF list, but I have a weird issue. I am seeing a RACF > rtncd 8 SAF

Re: EXTERNAL: Re: IBM z/OS Product Documentation 2016

Here ya go ... z/OS V2.2 PDFs are available zipped up Marna Walle Although today the z/OS V2.2 publications are not available on Knowledge Center, they will be very soon. The individual books are available as PDFs here: http://www-03.ibm.com/systems/z/os/zos/library/bkserv/v2r2pdf/ .

Re: Economics of Mainframe Technology

Is there a link to the keynote or the data presented during the keynote? Lo -- Artificial Intelligence is no match for Natural Stupidity - Unknown On Tue, Mar 10, 2015 at 3:36 PM, Art Gutowski arthur.gutow...@gm.com wrote: If my notes are accurate from Ross' Keynote address to SHARE

Re: Enumerating User IDs (was: CANCEL TSO Logon?)

I do not believe you will get RACF SMF and console messages for this type of probing. It is my understanding that TSO performs a RACROUTE REQUEST=EXTRACT to obtain the data to fill in the various fields in the logon panel. When retrieving or replacing fields, the RACF manual explicitly states:

Re: Enumerating User IDs (was: CANCEL TSO Logon?)

The problem is, that when TSO populates the logon panel, it does not do a(RACROUTE REQUEST=INIT (RACINIT) but rather does an RACROUTE REQUEST=EXTRACT (RACXTRT) against the user id specified to populate the fields on the logon panel. This does not result in any RACF message or SMF record, but TSO

Re: CANCEL TSO Logon?

Hopefully all of your started proc user ids are PROTECTED otherwise those 3 invalid password attempts could cause you big problems. Lou -- Artificial Intelligence is no match for Natural Stupidity - Unknown On Mon, Jan 5, 2015 at 2:21 PM, Mike Schwab mike.a.sch...@gmail.com wrote: On Mon,

Re: Cracking IBM Mainframe Password Hashes

I also wonder if they truly mean password hashes, as in the ancient RACF password hash methods, or the more commonly used encryption method of securing passwords or to be more technically correct, user ids. -- Artificial Intelligence is no match for Natural Stupidity - Unknown On Tue, Mar 18,

Re: Cracking IBM Mainframe Password Hashes

The biggest problem with this is if I recall correctly, the user id is encrypted with the password with a variant of DES that has a slight twist from the published DES algorithm. That is why there are two types of DES encrypt calls in the RACROUTE REQUEST=EXTRACT macro; ENCRYPT=(data addr,DES)

Re: IBM to invest 1.2B into Cloud Data Centers

FYI, you could have cut the original URL down to: http://www.microscope.co.uk/news/2240212684/IBM-ploughs-billions-into-cloud- data-centreshttp://www.microscope.co.uk/news/2240212684/IBM-ploughs-billions-into-cloud-data-centres?utm_medium=EM The rest is just tracking garbage. -- Artificial

Re: John Dvorak explains why the z is doomed (indirectly)

Is it truly required for *everyone* to be computer literate? In the early days computers were not so widespread the few that used them were those that understood them and how they worked. This was necessary as the systems themselves were crude with regard to interfaces and services provided.

Re: OT - from June, an article on how fantastic healthcare.gov is

Real word processing came into being in the early 1970's when manufacturers started creating systems that could store material on magnetic media and alo it to be reproduced at a later time. In 1969 IBM introduced a system that allowed cards to be inserted into a typewriter and stored what was

Re: Relative generation - how to recognize new datasets under TSO

According to the doc, BPXWDYN has additional keywords available vs TSO ALLOCATE. One of these is GDGNT, which has the following description: The S99GDGNT flag is set in the S99FLAG1 field. For information about this flag, see z/OS MVS Programming: Authorized Assembler Services Guide. The Assem