Re: Seeking a tool to do a network security scan of z/OS

Just to clarify something that I wri=ote and maybe missed somehow about NAMP: Z/OS can be configured to block slow or fast scans using the IDS feature. So, yes, NMAP can try scan the mainframe, but if the IP STAK is well configured, it will be hard to get the open ports. This is not to say that you

Re: Seeking a tool to do a network security scan of z/OS

-Original Message- From: IBM Mainframe Discussion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On Behalf Of Robyn Gilchrist Sent: Friday, July 13, 2018 8:33 AM To: IBM-MAIN@LISTSERV.UA.EDU Subject: (External):Re: Seeking a tool to do a network security scan of z/OS This is an area I have been invest

Re: Seeking a tool to do a network security scan of z/OS

This is an area I have been investigating for the past few months. I think a network scanner is a good place to start and Nmap is a very strong network scanner. An open port isn't a problem per se (SMTP port 25 or HTTP on port 80) since open ports are required for communication. Nmap network

Re: Seeking a tool to do a network security scan of z/OS

t in March 1999. sendmail has >> supported it since 8.10. >> >> >> >> >> -- >> Shmuel (Seymour J.) Metz >> http://mason.gmu.edu/~smetz3 >> >> >> From: IBM Mainframe Discussion List o

Re: Seeking a tool to do a network security scan of z/OS

gmu.edu/~smetz3 From: IBM Mainframe Discussion List on behalf of ITschak Mugzach Sent: Thursday, July 12, 2018 3:06 PM To: IBM-MAIN@listserv.ua.edu Subject: Re: Seeking a tool to do a network security scan of z/OS Shmuel, the SMTP server is mainly spool based. So you can create a text file (Def

Re: Seeking a tool to do a network security scan of z/OS

I don’t think Qualys will identify configuration issue (which we do inside the mainframe with IronSphere). It will do port scan, try to ping it, but if your mainframe is well configured, it will block port scan as well. ITschak נשלח מה-iPad שלי ‫ב-12 ביולי 2018, בשעה 22:11, ‏‏Mark Regan ‏ כתב/

Re: Seeking a tool to do a network security scan of z/OS

If your site already uses Qualys, then it can be used to scan z/OS too. On Wed, Jul 11, 2018 at 3:53 PM Dyck, Lionel B. (RavenTek) < lionel.d...@va.gov> wrote: > Is there a tool available that can do a network security scan of a z/OS > system to identify network vulnerabilities? > > thanks > > --

Re: Seeking a tool to do a network security scan of z/OS

IBM Mainframe Discussion List on behalf > of ITschak Mugzach > Sent: Thursday, July 12, 2018 1:08 PM > To: IBM-MAIN@listserv.ua.edu > Subject: Re: Seeking a tool to do a network security scan of z/OS > > Shmuel, > > I refill the refrigerator doing pentests. I done this

Re: Seeking a tool to do a network security scan of z/OS

> From: IBM Mainframe Discussion List on behalf > of ITschak Mugzach > Sent: Thursday, July 12, 2018 1:08 PM > To: IBM-MAIN@listserv.ua.edu > Subject: Re: Seeking a tool to do a network security scan of z/OS > > Shmuel, > > I refill the refrigerator doi

Re: Seeking a tool to do a network security scan of z/OS

//mason.gmu.edu/~smetz3 From: IBM Mainframe Discussion List on behalf of ITschak Mugzach Sent: Thursday, July 12, 2018 1:08 PM To: IBM-MAIN@listserv.ua.edu Subject: Re: Seeking a tool to do a network security scan of z/OS Shmuel, I refill the ref

Re: Seeking a tool to do a network security scan of z/OS

a.edu Subject: Re: Seeking a tool to do a network security scan of z/OS > I suppose it's to much to expect for users to look at the trace fields to determine the provenances of messages. Nine out of ten recipients have no idea how to do so, and would not know what they were looking at if

Re: Seeking a tool to do a network security scan of z/OS

t sure it's a great approach for anyone. Charles -Original Message- From: IBM Mainframe Discussion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On Behalf Of Seymour J Metz Sent: Thursday, July 12, 2018 9:35 AM To: IBM-MAIN@LISTSERV.UA.EDU Subject: Re: Seeking a tool to do a network security

Re: Seeking a tool to do a network security scan of z/OS

t; > > From: IBM Mainframe Discussion List on behalf > of ITschak Mugzach > Sent: Wednesday, July 11, 2018 4:35 PM > To: IBM-MAIN@listserv.ua.edu > Subject: Re: Seeking a tool to do a network security scan of z/OS > > Do you mean outsi

Re: Seeking a tool to do a network security scan of z/OS

ent: Thursday, July 12, 2018 11:35 AM To: IBM-MAIN@LISTSERV.UA.EDU Subject: [EXTERNAL] Re: Seeking a tool to do a network security scan of z/OS Does your SMTP server not do authentication? That would certain get the auditors' attention. Do your users respond to phish attempts? Another

Re: Seeking a tool to do a network security scan of z/OS

a tool to do a network security scan of z/OS Do you mean outside of the mainframe? Not as a single package, but NMAP will show you which ports are opened on the mainframe. If your mainframe answers the scan, you already have a problem... Now assume that port 25 is open and your mail server is con

Re: Seeking a tool to do a network security scan of z/OS

Do you mean outside of the mainframe? Not as a single package, but NMAP will show you which ports are opened on the mainframe. If your mainframe answers the scan, you already have a problem... Now assume that port 25 is open and your mail server is configured an MTA. One can connect to the server w

Seeking a tool to do a network security scan of z/OS

Is there a tool available that can do a network security scan of a z/OS system to identify network vulnerabilities? thanks -- Lionel B. Dyck (Contractor) < Mainframe Systems Programmer - RavenTek Solution Partners --