I've had, (or at least I hope it was), certain night jobs update my last 
sign on date.

Rob Berendt
-- 
"They that can give up essential liberty to obtain a little temporary 
safety deserve neither liberty nor safety." 
Benjamin Franklin 




Al Barsa <barsa@xxxxxxxxxxxxxxxxxxx> 
Sent by: midrange-l-bounces@xxxxxxxxxxxx
11/18/2003 02:17 PM
Please respond to
Midrange Systems Technical Discussion <midrange-l@xxxxxxxxxxxx>


To
Midrange Systems Technical Discussion <midrange-l@xxxxxxxxxxxx>
cc

Subject
RE: iSeries passwords











What you can do is to change the system value for QDSPSGNINF.  This also
can be changed at the user profile level.

What this does is it shows you the last date and time that your profile 
was
signed on, the number of invalid sign on attempts, if any, and the days
until your password expires if that expiration is within 10 days.  It also
provides an F key to run the CHGPWD command.

If you were away on vacation last week, and come in on Monday morning, and
see that your last sign in was on Friday, you know you had a problem.

If you were captured with a fake sign-on screen, which captured your
password, and then ended that job, and made you think that you had keyed a
bad password, when you signed on and saw no invalid password attempts, you
know that you were duped!

Al

Al Barsa, Jr.
Barsa Consulting Group, LLC

400>390

914-251-1234
914-251-9406 fax

http://www.barsaconsulting.com
http://www.taatool.com



 
             rob@xxxxxxxxx 
             Sent by: 
             midrange-l-bounce                                          To 

             s@xxxxxxxxxxxx            Midrange Systems Technical 
                                       Discussion 
                                       <midrange-l@xxxxxxxxxxxx> 
             11/18/2003 01:21                                           cc 

             PM 
                                                                   Subject 

                                       RE: iSeries passwords 
             Please respond to 
             Midrange Systems 
                 Technical 
                Discussion 
             <midrange-l@midra 
                 nge.com> 
 
 




Yes, the iSeries has a lot of potential Trojan Horses.  However, after IBM
has come up with all of the QPWD* system values, and if you still want to
do your own verification, what else could they have done?

Rob Berendt
--
"They that can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety."
Benjamin Franklin




"Andy Nolen-Parkhouse" <aparkhouse@xxxxxxxxxxx>
Sent by: midrange-l-bounces@xxxxxxxxxxxx
11/18/2003 11:42 AM
Please respond to
Midrange Systems Technical Discussion <midrange-l@xxxxxxxxxxxx>


To
"'Midrange Systems Technical Discussion'" <midrange-l@xxxxxxxxxxxx>
cc

Subject
RE: iSeries passwords






Rob,

I agree that you're probably right.  But this exit program is a
user-written
program which receives the old and new passwords as clear parameters and
could do what it wants with them, including writing them to a database.
While adding an exit point requires a little more sophistication to
implement than just changing a system value, it requires the same level of
authority (*ALLOBJ and *SECADM) as changing the QPWDVLDPGM system value.

What am I missing?

Andy


> I bet this:
>
> The password validation exit program
> http://publib.boulder.ibm.com/iseries/v5r2/ic2924/info/apis/xsyvlphr.htm
>
> Rob Berendt




_______________________________________________
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing
list
To post a message email: MIDRANGE-L@xxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx
Before posting, please take a moment to review the archives
at http://archive.midrange.com/midrange-l.


_______________________________________________
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing 
list
To post a message email: MIDRANGE-L@xxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx
Before posting, please take a moment to review the archives
at http://archive.midrange.com/midrange-l.



_______________________________________________
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing 
list
To post a message email: MIDRANGE-L@xxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx
Before posting, please take a moment to review the archives
at http://archive.midrange.com/midrange-l.



This thread ...

Follow-Ups:
Replies:

Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2019 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].