× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. SECURITY400
  3. November 2004

RE: SQL and IT Controls

Edwin,

My apologies.  I though it was your tool since you included an URL for your
site and you didn't mention another vendor's name.

However, I do want to clarify something.  You said it did log statements
during a STRSQL session.

Are you sure about that?  I don't see anything to that effect on the
SafeNet/400 website.  Quite the opposite in fact.  Everything I see tells me
SafeNet/400 wouldn't log STRSQL sessions commands.

Which fits with every other similar product I've seen and the fact that the
SQL server exit point used by these types of product to process SQL requests
from clients (ODBC, JDBC, ADO) is _NOT_ called during a STRSQL session.



Charles Wilt
iSeries Systems Administrator / Developer
Mitsubishi Electric Automotive America
ph: 513-573-4343
fax: 513-398-1121
 

> -----Original Message-----
> From: Edwin Davidson [mailto:EDavidson@xxxxxxxxxxxx]
> Sent: Tuesday, November 23, 2004 1:06 PM
> To: Security Administration on the AS400 / iSeries
> Subject: Re: [Security400] SQL and IT Controls
> 
> 
> First, it's not "my tool."  we were looking at it as an end user.
> 
> Second, it does "log activity during a STRSQL session."
> 
> Maybe I am misunderstanding the level of activity desired, but you
> can actually see user DOEJ did an UPDATE FILE SET FIELD='A' 
> WHERE FIELD='B'
> and the like.  It takes a ton of disk space to do this level 
> of logging, 
> as we found out.
> 
> Enough said, however.  If it's not the right tool, so be it.  
> I don't make
> anything if it sells.  Check my website in my e-mail address and
> you will clearly see we are not in this buisiness.
> 
> Edwin Davidson.
> 
> 
> http://www.primeinc.com
> **********************************************************************
> This email and any files transmitted with it are confidential
> and intended solely for the use of the individual or entity to
> whom they are addressed.  If you have received this email
> in error please reply to the sender of the message.
> 
> The views expressed in this correspondence may not
> reflect the views of Prime, Inc.
> 
> This footnote also confirms that this email message has
> been scanned for the presence of computer viruses.
> **********************************************************************
> 
> _______________________________________________
> This is the Security Administration on the AS400 / iSeries 
> (Security400) mailing list
> To post a message email: Security400@xxxxxxxxxxxx
> To subscribe, unsubscribe, or change list options,
> visit: http://lists.midrange.com/mailman/listinfo/security400
> or email: Security400-request@xxxxxxxxxxxx
> Before posting, please take a moment to review the archives
> at http://archive.midrange.com/security400.
>

As an Amazon Associate we earn from qualifying purchases.

This thread ...
Follow-Ups:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.