Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [PEN-TEST] Pen-Testing AS/400

From: "Bias, Harry" <Harry.Bias () PREDICTIVE COM>
Date: Tue, 12 Dec 2000 13:02:08 -0500
Please review the following document for additional direction and
guideline for securing an AS/400
http://www.backspace.org/dms/archive/as400sec.html

It's no silver bullet, but any additional information parallel to, or in
line with what your doing is confirmation that what your doing is all
good.

Further reading
http://mc-store.stores.yahoo.com/mc-store/secyourasfro.html

Best Regards,
Harry
Predictive Systems, Inc.,
Senior InfoSec Consultant Mid-Atlantic Region




Enno Rey <erey () IX URZ UNI-HEIDELBERG DE>
Sent by: Penetration Testers <PEN-TEST () SECURITYFOCUS COM>
12/11/00 05:14 AM
Please respond to Penetration Testers


        To:     PEN-TEST () SECURITYFOCUS COM
        cc:
        Subject:        [PEN-TEST] Pen-Testing AS/400


Hi,

I'm currently involved in a pen-test in an environment with lots of
AS/400s
(some with IP, some without).
I've been working with one some time ago but I certainly don't have the
expertise to judge the security of those boxes.
Does anybody have any hints for some security documents concerning the
AS/400 or some kind of checklist or something else that could help me.
I've already been searching the archives. I found that in august Noah
Dunker
posed nearly the same question, but never got any answer...
And I found www.redbooks.ibm.com/abstracts/gg244200.html from 1994.

Anything else that could help me?

Thanks a lot in advance &

regards,

Enno Rey
Previous By Date Next
Previous By Thread Next

Current thread: