Re: BugTraq Exploit for OS/400 -- MIDRANGE-L

× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.

I'm 100% with you on this Dan

----- Original Message -----
From: "Dan Bale" <dbale@samsa.com>
To: <midrange-l@midrange.com>
Sent: Monday, February 25, 2002 2:25 PM
Subject: RE: BugTraq Exploit for OS/400


> Rob, Phil,
>
> Well, OK, I suppose I can see that knowledge of user IDs could be
considered
> a "vulnerability".  To most IBM midrangers, this would be considered
status
> quo.  Maybe I just find it strange that this is news.  After all, doesn't
> every AS/400 have a QSECOFR (and other IBM-supplied) profiles?
>
> In consideration of the userID=password scenario, the vulnerability is the
> person(s) managing the system, IMO.
>
> - Dan Bale
>
> _______________________________________________
> This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing
list
> To post a message email: MIDRANGE-L@midrange.com
> To subscribe, unsubscribe, or change list options,
> visit: http://lists.midrange.com/cgi-bin/listinfo/midrange-l
> or email: MIDRANGE-L-request@midrange.com
> Before posting, please take a moment to review the archives
> at http://archive.midrange.com/midrange-l.
>

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.