You wrote:
> I'd like some info on mainframe security:
> What vulnerabilities (classes) exist on a classical mainframe?
The bigest one is impersonation. Authentication is often weak, in that it
relies on information passed in plaintext (reusable passwords sent in the
clear). Anyone able to put a sniffer in front of the Front End Processor
can probably grab the password for any account on the system.
> What new vulnerabilities do I introduce when running Unix services or TCP/IP
> (IBM OPEN MVS?)?
Probably you increase the scope of where sniffer attacks can be fruitful.
For example, if you use TN3270 or some such application, the unencrypted
password might travel over many subnets before reaching the mainframe. In
this case, any controls you would have using LU and PU restrictions pretty
much evaporate.
> is the any advantager ro running a FW on a mainframe?
You get a prise for the world's most expensive firewall. ;-)
- Ted
-----------------------------------------------------------------------
Ted Doty, Internet Security Systems | Phone: +1 678 443-6000
6600 Peachtree Dunwoody Road, 300 Embassy Row | Fax: +1 678 443-6479
Atlanta, GA 30328 USA | Web: http://www.iss.net
-----------------------------------------------------------------------
PGP key fingerprint: 362A EAC7 9E08 1689 FD0F E625 D525 E1BE
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
