× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.



Thanks for doing this. I do wish there was something on the
system side, in the tcp area (just like we can say not to start the telnet
server...)
In many shops this would be a system wide door to shut.
Jim Franz
----- Original Message ----- 
From: "Wilt, Charles" <CWilt@xxxxxxxxxxxx>
To: "Midrange Systems Technical Discussion (E-mail)"
<midrange-l@xxxxxxxxxxxx>
Sent: Tuesday, June 14, 2005 9:42 AM
Subject: iSeries Access PC5250 Vulnerability - STRPCCMD (Updated info)


> All,
>
> You may remember a discussion a couple of months back concerning a
possible vulnerability in iSeries Access from the STRPCCMD.
>
> While this is a non-issue for most users who are accessing a trusted
iSeries.  There are those out there who access (relatively) non-trusted
system form whom this could be an issue.
>
> I created a DCR asking for a way to turn off the acceptance of a STRPCCMD.
Just got the following response from IBM:
>
> IBM has responded to your Design Change Request as follows:
>
> User Group Number - MR042705619
> Document Status - Accepted
> Title - Fix iSeries Access PC5250 Vulnerability
>
> IBM agrees with the request and  a solution appears to be desirable and
feasible. IBM intends to provide a solution. However IBM's plans may change
and no commitment is made that a solution will be provided.
>
> A function will be added via a V5R2 and V5R3 PTF of iSeries Access for
Windows.to allow a user to specify in a workstion profile (.WS file) whether
or not STRPCCMD will be allowed to that PC.  The V5R3 PTF will be available
by end of June.  The V5R2 PTF will be available this Fall.
> ______________________________________________
> Design Change Requests
> IBM eServer iSeries
> DCRREQ@xxxxxxxxxx
>
>
>
>
> Charles Wilt
> --
> iSeries Systems Administrator / Developer
> Mitsubishi Electric Automotive America
> ph: 513-573-4343
> fax: 513-398-1121
>
>
> -- 
> This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing
list
> To post a message email: MIDRANGE-L@xxxxxxxxxxxx
> To subscribe, unsubscribe, or change list options,
> visit: http://lists.midrange.com/mailman/listinfo/midrange-l
> or email: MIDRANGE-L-request@xxxxxxxxxxxx
> Before posting, please take a moment to review the archives
> at http://archive.midrange.com/midrange-l.
>
>



As an Amazon Associate we earn from qualifying purchases.

This thread ...

Replies:

Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.