MIDRANGE dot COM Mailing List Archive



Home » MIDRANGE-L » August 2011

Re: TELNET Project



fixed

Robert,

The QIBM_QTG_DEVINIT exit point will provide the data you want - and will also provide you with the ability to deny certain users or IP addresses with access to Telnet (though the security geek in me feels compelled to note that this exit point alone will not prevent other network connections such as FTP, ODBC, etc. from a valid user).

It's a simple interface with a data structure parameter list that provides a number of fields into the program and a single binary out of the program (An allow/deny access switch). You can use the input parameters to capture things like user name, job name, job number, and _I_think_ IP address. If the parameter list doesn't provide IP address, I know that information is available in one of the "current job" API calls (Gary Monnier probably knows for sure) so you might have to make an extra program call.

The only other thing to do then is arrange the data in a format (File, Dataq, journal?) that is easy for you to report on. Should be a simple task.

One word of caution - when you attach the exit program to the exit point, all future Telnet connections will be regulated by this exit program - so if it has a bug, no one will be able to make a new connection. Therefore, when testing, have aan active connection (or 5) that you can use to unregister the exit point just in case. (Just some been there done that advice.)

HTH

jte



On Aug 18, 2011, at 8:30 AM, Robert Munday wrote:

Greetings from the sunny south.





I have been tasked with capturing the user profiles and IP addresses of
those who sign into our system remotely. An analyst has directed me to
the IBM site for instructions on TELNET processing. It uses a program at
the Exit Point - QIBM_QTG_DEVINIT, and this is where I am to capture the
data. I have downloaded and am reviewing the programs from the IBM site.



Have you worked with this type of data capture? It's new to me and I seek
your guidance.



Thanks,







Robert Munday

Munday Software Consultants

Montgomery, AL
--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
To post a message email: MIDRANGE-L@xxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx
Before posting, please take a moment to review the archives
at http://archive.midrange.com/midrange-l.


--
John Earl
President and CEO,
Townsend Security
360-359-4418
townsendsecurity.com
The Encryption Company






Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2014 by MIDRANGE dot COM and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available here. If you have questions about this, please contact