Yeah, but this calculator does not answer whether or not there should be a firewall in front of the box.
I believe that is the question and he seeks proof. 'ken' [EMAIL PROTECTED] wrote: > I have found this useful. > > This Link was posted previously. Thanks ??? > > http://www.as400.ibm.com/tstudio/secure1/advisor/secwiz.htm > > iSeries Security Advisor > Welcome to the iSeries Security Advisor! If you are new to the iSeries, new > to security implementation on the iSeries, or the environment in which you > run your iSeries has recently changed, this tool will generate a list of > recommendations that you can use as a starting point for your security > policies. > Answer the questions below, and then click on "Calculate Recommendations." > You'll be presented with a list of recommended security-related system > values along with suggestions for scheduling basic security and audit > journal reports. The security-related system values implement basic > security policy on your machine. The reports, when scheduled to run > periodically, help you ensure those policies are followed, are not changed > without your approval, and help you monitor security-related events on your > system. > > The advisor will also generate a CL program that you can cut-and-paste and > then edit for your own use. > > > > > > This may be a very silly question. But I am desperate for advice from one > of > you "security wizards", as I need to convince a client to immediately > evaluate altanative security solutions ASAP, as they are exposing their > internal network to the Internet without a firewall. > > Their argument is that the servers are AS/400 and they claim that the > platform does not have any security holes or vulnerabilities that a > potential hacker could exploit. So they feel they don't need a firewall. > Although I am aware of 2 vulnerabilities on the Domino AS/400 (They are > using DOMINO too) I don't have adequate knowledge and can not site > incidents > on hacking the AS/400. > > Any advice, references,links etc --- MUCH MUCH appreciated ! > > Ta > RJ > > > > > > ********************************************************************** > This email and any files transmitted with it are confidential and > intended solely for the use of the individual or entity to whom they > are addressed. If you have received this email in error please notify > the system manager. > > This footnote also confirms that this email message has been swept by > MIMEsweeper for the presence of computer viruses. > > www.mimesweeper.com > ********************************************************************** > > > >
