MIDRANGE dot COM Mailing List Archive



Home » MIDRANGE-L » December 2012

RE: Remote Access Security, 3rd Party Tool



fixed

Sam,

Covering the exit points is, in my opinion, a necessity but don't overlook object security itself. A good object security scheme is your front line on security. For example secure your database so only authorized individuals can access it. This will secure your database regardless of the client used to access it. Your exit point programs can then focus on which clients you want to allow access to your system and what functions you want to allow them to use.

HTH

Gary Monnier

-----Original Message-----
From: midrange-l-bounces@xxxxxxxxxxxx [mailto:midrange-l-bounces@xxxxxxxxxxxx] On Behalf Of Sam_L
Sent: Sunday, December 02, 2012 5:57 PM
To: midrange-l@xxxxxxxxxxxx
Subject: Remote Access Security, 3rd Party Tool

More of our non-IT employees are getting VPN access to our AS/400. Need to start controlling that access.

Exit points are probably the only solution to handle ODBC, FTP, JDBC, SQL, etc access. It seem to me that a 3rd party tool is something we should investigate, because there are an awful lot of exit points to cover by ourselves.

If anyone is using a Remote Access Security Manager and feels free to provide the name and comment on the effectiveness, ease of use and support, it would be appreciated.

Thanks

Sam

In a former life, where I wasn't the responsible party, we installed a 3rd party tool that kept out the riff-raff--I can't recall the name, but it was extremely granular and thus quite complex to manage. My research so far indicates that Powertech, Net IQ (was Pentasafe)and Enforcive (was BSafe) have products.
--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list To post a message email: MIDRANGE-L@xxxxxxxxxxxx To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx Before posting, please take a moment to review the archives at http://archive.midrange.com/midrange-l.






Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2014 by MIDRANGE dot COM and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available here. If you have questions about this, please contact