× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. MIDRANGE-L
  3. August 2003

RE: iSeries vs. Unix vs. SQL Server vs. Oracle &Security/Data separation???

Yes that is true.  But if the firewall/Proxy stops the web server from
initiating outbound traffic, that would be difficult to do.  Also the anti
virus software hopefully will catch them.  An no the server cannot join our
domain, fire wall blocks what the DMZ can get to on our inside LAN.  Also
our web server does not have Administrative rights to the box.  Hopefully
they do not find the administrative user id and password.  But then W2K IIS
is the least secure box of all.  I wish I had an Apache Web Admin /
Programmer in-house that can setup an AS400.  I would then buy a couple of
used 270s for web serving.

Some Day,

Chris

-----Original Message-----
From: Scott Klement




On Wed, 6 Aug 2003, Chris Bipes wrote:

> So they break IIS and have full control of the web server.  The
> web server is a stand alone W2K box not in any work group or domain.

If they have full control of the box, they can add it to any workgroup
or domain that they like -- as long as it's accessible to this machine.

I'd be more worried about them sneaking a program into the system that
records things going to your web site, like credit card numbers,
passwords, e-mail addresses, etc, and then sends them back (perhaps via
anonymous USENET access, or some other untraceable fashion) to the
original hacker.

If you didn't know that they installed this program, they could be
leeching this information for a long time before anyone notices, and by
then they've got a lot of customers info, ready to use for whatever
purposes they deem fit.

Once things have been discovered, the potential lawsuits and bad press
could destroy you.

> Only runs IIS and one sock client application that takes request from
> IIS and re-formats them to the iSeries.  The socket client also connects
> to one of several iSeries, if the primary is down, it switches to a
> secondary.  We just reset once the primary is back up.

But, if they have "full control" of the box, they can install any software
that they want to, they're not limited by the client apps you've placed on
it.

As an Amazon Associate we earn from qualifying purchases.

This thread ...
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.