|
One person suggested to me privately that I look at their security package. We've already purchased PentaSafe and will install it one of these days, email takes sooo much of my time ;-) These security packages will lock down a lot of this. But then again you're at the following scenario 1) If you allow someone to use a package that uses ODBC to update FIELDA of FILEB then pretty much any ODBC connection will be able to update FIELDA of FILEB for that user. clewis@iquest.net on 03/27/2000 04:15:22 PM Please respond to MIDRANGE-L@midrange.com@Internet To: MIDRANGE-L@midrange.com@Internet cc: Fax to: Subject: Re: Op's nav - Graphical UPDDTA Colin, You are NOT kidding !!! I have been setting us up with Frame Relay at remote sites to replace leased lines and doing this via TCP/IP. I've also started allowing users internet access and their PC's are doing this via TCP/IP of course. Suprise, suprise - not, (granted this is a "private" network), from a PC with NO Client Access ANYTHING, no AS/400 setup previously, I FTP'd and Telnet'd to the AS/400 with NO problem... Chuck Colin McNaught wrote: > Rob, > > Turning off the Database portion of Operations Navigator will not > resolve this glaring security breach. If someone wants to get to your > database they don't need to use Operations Navigator, ftp, file > transfer or even windows explorer will do the job just as easily. > The only safe way is to use object security. > > Regards, > > Colin > > > ______________________________ Reply Separator >_________________________________ > Subject: Op's nav - Graphical UPDDTA > Author: Rob Berendt <rob@dekko.com> at Internet > Date: 24/03/00 13:24 > > How do we turn off the Database portion of Operations > Navigator? I played with this before but it took a seminar > yesterday to point out this glaring security breach to me > yesterday. Granted we could use object security, but the > reality of that being implemented anytime soon is slim to > none. The breach is this: > Open Op's nav > Expand your 400 > Select database > Select libraries > Select a library > Find a database and double click on it. > There you go, a graphical UPDDTA, for all your users to share! > And if you right click on the database, you can add fields and > do all sorts of funky things to a table. Graphical DDS? > > Please, no flames on how I shouldn't ask the list this question, > because then more people will know about this hole. The hole > already exists. How do we plug it? > +--- > | This is the Midrange System Mailing List! > | To submit a new message, send your mail to MIDRANGE-L@midrange.com. > | To subscribe to this list send email to MIDRANGE-L-SUB@midrange.com. > | To unsubscribe from this list send email to MIDRANGE-L-UNSUB@midrange.com. > | Questions should be directed to the list owner/operator: david@midrange.com > +--- > > ------------------------------------------------------------------------ > Received: from uucphost.mcs.net ([192.160.127.93]) by ccgate.bausch.com with > SMTP > (IMA Internet Exchange 3.11) id 0000342C; Fri, 24 Mar 2000 14:39:52 -0500 > Received: (from uucp@localhost) > by uucphost.mcs.net (8.9.3/8.8.8) with UUCP id NAA06002; > Fri, 24 Mar 2000 13:39:49 -0600 (CST) > Received: (from majordom@localhost) > by linux.midrange.com (8.9.3/8.8.7) id MAA18081 > for midrange-l-outgoing; Fri, 24 Mar 2000 12:25:10 -0600 > Received: (from uucp@localhost) > by linux.midrange.com (8.9.3/8.8.7) with UUCP id MAA18068 > for MIDRANGE-L@midrange.com; Fri, 24 Mar 2000 12:25:05 -0600 > Received: from notes-gw.dekko.com (dekko.com [208.16.99.6]) > by uucphost.mcs.net (8.9.3/8.8.8) with SMTP id MAA95257 > for <MIDRANGE-L@midrange.com>; Fri, 24 Mar 2000 12:24:35 -0600 (CST) > Received: from notes-gw.dekko.com (NetTalk Internet Connector) > by notes-gw.dekko.com (AltaVista Mail F2.0w BL26wB API) > id 0000_00ef_38db_b2b7_2510; > Fri, 24 Mar 2000 13:23:51 -0500 > Date: Fri, 24 Mar 2000 13:24:05 -0500 > From: Rob Berendt <rob@dekko.com> > Subject: Op's nav - Graphical UPDDTA > To: MIDRANGE-L@midrange.com > Message-Id: <3646c643.240200@notes-gw.dekko.com> > X-Mailer: Worldtalk (NetTalk for Windows NT 4.5-g5)/MIME > Sender: owner-midrange-l@midrange.com > Precedence: bulk > Reply-To: MIDRANGE-L@midrange.com > Errors-To: list-errors@midrange.com > X-List-Name: Midrange Systems Mailing List (MIDRANGE-L@midrange.com) +--- | This is the Midrange System Mailing List! | To submit a new message, send your mail to MIDRANGE-L@midrange.com. | To subscribe to this list send email to MIDRANGE-L-SUB@midrange.com. | To unsubscribe from this list send email to MIDRANGE-L-UNSUB@midrange.com. | Questions should be directed to the list owner/operator: david@midrange.com +--- +--- | This is the Midrange System Mailing List! | To submit a new message, send your mail to MIDRANGE-L@midrange.com. | To subscribe to this list send email to MIDRANGE-L-SUB@midrange.com. | To unsubscribe from this list send email to MIDRANGE-L-UNSUB@midrange.com. | Questions should be directed to the list owner/operator: david@midrange.com +---
As an Amazon Associate we earn from qualifying purchases.
This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.
midrange.com
