MIDRANGE dot COM Mailing List Archive



Home » MIDRANGE-L » May 2014

RE: Understanding QPWDLVL? . . . and my previous Tomcat query



fixed

I'm still at 0.
Scary change.
On my things to do list.
I know something is going to break when I change this.
I can test some things on my new guest LPAR, but not all.

Paul


-----Original Message-----
From: MIDRANGE-L [mailto:midrange-l-bounces@xxxxxxxxxxxx] On Behalf Of rob@xxxxxxxxx
Sent: Friday, May 23, 2014 2:42 PM
To: Midrange Systems Technical Discussion
Subject: Re: Understanding QPWDLVL? . . . and my previous Tomcat query

You know, I found that link by reading the 5250 help at WRKSYSVAL QPWDLVL.
See the System i Security Reference, SC41-5302
publication for additional considerations prior to
changing the password level to 3. Moving from QPWDLVL 3
back to 0 is not allowed.
Then I googled that, System i Security Reference Then I weeded that down to 7.1.
Took some research...

Rob Berendt
--
IBM Certified System Administrator - IBM i 6.1 Group Dekko Dept 1600 Mail to: 2505 Dekko Drive
Garrett, IN 46738
Ship to: Dock 108
6928N 400E
Kendallville, IN 46755
http://www.dekko.com





From: "James H. H. Lampert" <jamesl@xxxxxxxxxxxxxxxxx>
To: Midrange Systems Technical Discussion <midrange-l@xxxxxxxxxxxx>
Date: 05/23/2014 01:22 PM
Subject: Understanding QPWDLVL? . . . and my previous Tomcat query
Sent by: "MIDRANGE-L" <midrange-l-bounces@xxxxxxxxxxxx>



We're contemplating upgrading one of our products to accommodate QPWDLVL
2-3. As I recall, I did some experimentation on that very thing, some
years ago, and may have even worked out the basics of a way to do it,
but I haven't yet done anything practical with it.

Something I don't get about the QPWDLVL values, as explained (and I use
that word advisedly) by IBM.

"QPWDLVL 2 [and 3] cannot be used if your system communicates with other
System i platforms . . . with either a QPWDLVL value of 0 or 1 or an
operating system release less than V5R1M0"

Communicates in what way?

Our intersystem communication is limited to Telnet and FTP, and nothing
we do involves the arcane sorcery known as (if I remember right)
"password substitution"; why would Telnet or FTP care what the password
level is on the system they're communicating with?

*****

Tuesday, I brought up an issue with running Tomcat in a subsystem: it
seems that one customer tried it, and the performance degraded
significantly. I asked for insights; so far, nobody has offered any, and
I have none of my own. Given that Tomcat is implemented in Java, I just
reposted to the Java List.

--
JHHL





Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2014 by MIDRANGE dot COM and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available here. If you have questions about this, please contact