RE: How could a 3rd party remote support user run a process from their PC that would change several system values and submit several jobs?

We found it was NOT run from RMTCMD.

It was run from System I Navigator, Security, Configure. Security wizard
The wizard created 38 QSYSWZDR** jobs in the IBM base job scheduler, scheduled to run weekly.
The security system values were also changed by the wizard.

The user claims they did not go through the 10 to 20 screens of the wizard.

Paul

-----Original Message-----
From: MIDRANGE-L [mailto:midrange-l-bounces@xxxxxxxxxxxx] On Behalf Of Rob Berendt
Sent: Thursday, December 14, 2017 3:01 PM
To: Midrange Systems Technical Discussion
Subject: RE: How could a 3rd party remote support user run a process from their PC that would change several system values and submit several jobs?

One thing to keep in mind is that you do not want to end up playing whack-a-mole.
For instance, you could stop them from accessing CHGSYSVAL from RMTCMD.
Then, as others pointed out, it's quite simple to find other ways to run it, like from within sql.
You could secure the command instead.


Rob Berendt
--
IBM Certified System Administrator - IBM i 6.1 Group Dekko Dept 1600 Mail to: 2505 Dekko Drive
Garrett, IN 46738
Ship to: Dock 108
6928N 400E
Kendallville, IN 46755
http://www.dekko.com

--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list To post a message email: MIDRANGE-L@xxxxxxxxxxxx To subscribe, unsubscribe, or change list options,
visit: https://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx Before posting, please take a moment to review the archives at https://archive.midrange.com/midrange-l.

Please contact support@xxxxxxxxxxxx for any subscription related questions.

Help support midrange.com by shopping at amazon.com with our affiliate link: http://amzn.to/2dEadiD