× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. MIDRANGE-L
  3. September 2000

RE: INCREDIBLE - what am I missing here... ??? !!!

  • Subject: RE: INCREDIBLE - what am I missing here... ??? !!!
  • From: "Alistair Rooney" <alistairr@xxxxxxxxxx>
  • Date: Fri, 29 Sep 2000 09:26:51 +0200
  • Importance: Normal
 
John,

Your points are well taken. Let's face it the only way to secure a box
completely is to keep it in a safe switched off, and even then...

My point, albeit not well made, was that the AS/400 is not really in the
same league as Linux and you can't hack a 400 as easily as the writer
claimed.

C2 is DoD Orange Book as far as I know.


Alistair


-----Original Message-----
From: owner-midrange-l@midrange.com
[mailto:owner-midrange-l@midrange.com]On Behalf Of John Earl
Sent: 28 September 2000 05:57
To: MIDRANGE-L@midrange.com
Subject: Re: INCREDIBLE - what am I missing here... ??? !!!



> Gartner says it's the most reliable. The As/400 goes way beyond DoD Orange
> Book security.

I don't know what you mean by this, could you explain?   C2 is a process
that
involves continuous auditing as much (or even more so) than configuration
settings.


Alistair, be humble about security.  Everytime you convince yourself you've
got
it right, some overly clever 13 year-old will come along and put you back in
your
place.  The AS/400 can be an extremely secure box, but due (I think) to the
insular nature of the AS/400 community I don't think that many systems have
actually attained the high level of security that you attach to it.  If the
reason AS/400's haven't been hacked is because few in the hacking community
are
AS/400 aware, then it is only a matter of time.

There is still much for us to do.

IMHO,

jte


--
John Earl                    johnearl@400security.com
The PowerTech Group      --> new number --> 253-872-7788
PowerLock Network Security   www.400security.com
--


+---
| This is the Midrange System Mailing List!
| To submit a new message, send your mail to MIDRANGE-L@midrange.com.
| To subscribe to this list send email to MIDRANGE-L-SUB@midrange.com.
| To unsubscribe from this list send email to MIDRANGE-L-UNSUB@midrange.com.
| Questions should be directed to the list owner/operator:
david@midrange.com
+---



**********************************************************************
This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed. If you have received this email in error please notify
the system manager.

This footnote also confirms that this email message has been swept by
MIMEsweeper for the presence of computer viruses.

www.mimesweeper.com
**********************************************************************
+---
| This is the Midrange System Mailing List!
| To submit a new message, send your mail to MIDRANGE-L@midrange.com.
| To subscribe to this list send email to MIDRANGE-L-SUB@midrange.com.
| To unsubscribe from this list send email to MIDRANGE-L-UNSUB@midrange.com.
| Questions should be directed to the list owner/operator: david@midrange.com
+---

As an Amazon Associate we earn from qualifying purchases.

This thread ...
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.