Well, we all know that there is no secure OS.
People are looking - the origination of the one V5 vulnerability came from an external security specialist firm.
I normally use this information because most people think that all MS security problems are related to the desktop and not the server side of things.
I posted it today because I don't buy the attitude that MS does everything it can to fix a problem and IBM doesn't. Not definitive proof but to me it's enough to rule out the opinions that have been stated by some today.
Michael Crump
Manager, Computing Services
Saint-Gobain Containers, Inc.
1509 S. Macedonia Ave.
Muncie, IN 47302
765.741.7696
765.741.7012 f
Don't draw fire, it irritates the people around you.
This email and its attachments may be confidential and are intended solely for the use of the individual to whom it is addressed. Any views or opinions expressed are solely those of the author and do not necessarily represent those of Saint-Gobain. If it did, it would be folded, mutilated, watered down, politically corrected, and would show up a week later if at all. If you are not the intended recipient of this email and its attachments, you must take no action based upon them, nor must you copy or show them to anyone.
Please contact the sender if you believe you have received this email in error.
-----Original Message-----
From: midrange-nontech-bounces@xxxxxxxxxxxx [mailto:midrange-nontech-bounces@xxxxxxxxxxxx] On Behalf Of Walden H. Leverich
Sent: Tuesday, January 15, 2008 3:54 PM
To: Non-Technical Discussion about the AS400 / iSeries
Subject: RE: i5 Youngsters
Between 2003 and 2008, i5/OS V5Rx was affected by 1 Secunia
issued advisory which was non critical and has been fixed.
Actually, if you include OS/400 V4 and V5 then you're up to 10. :) And IBM isn't exactly forthcoming with information about security and stability issues (see: information in "integrity ptf" cover letters, or rather the lack of information).
Seriously though. Given that every tom dick and harry can get a copy of W2K3 and bang on it in their free time does that surprise you? And most of these "advisories" were nearly impossible to exploit on a properly secured box anyway. How many people are actively looking for issues in i5/OS? Any? There are companies that do just that for Windows.
Now, I'll admit that's a double edged comment. You can say i5/OS doesn't need to be checked since it's so secure, and I'll say, they've not found as many issues because no one is looking.
-Walden
As an Amazon Associate we earn from qualifying purchases.