> -----Original Message----- > From: IBM Mainframe Discussion List > [mailto:ibm-m...@bama.ua.edu] On Behalf Of Tony B. > Sent: Wednesday, August 26, 2009 1:23 PM > To: IBM-MAIN@bama.ua.edu > Subject: Re: WHOIS > > Agreed. I'll repeat my tiresome mantra that anyone with a > list of all RACF > users can mechanically revoke almost all of them as fast as > initiators are > available.
<yawn> You don't even need to know the actual userids. Just the pattern. Then, very simply, in a loop in REXX, do an ftp to 127.0.0.1 specifying a userid and "n" tries at a password. Or submit job after job with USER=...,PASSWORD=... on it. Say, 10 jobs per userid. ftp is "safer" in that somebody is likely to notice all those batch jobs hitting the system. But they are not as likely to notice the ftp failures. Of course, this assumes that the person is fairly IT literate, has batch access with REXX coding knowledge. The ftp could might even be easier using Windows (or Linux) scripting to generate the ftp input. </yawn> -- John McKown Systems Engineer IV IT Administrative Services Group HealthMarkets(r) 9151 Boulevard 26 * N. Richland Hills * TX 76010 (817) 255-3225 phone * (817)-961-6183 cell john.mck...@healthmarkets.com * www.HealthMarkets.com Confidentiality Notice: This e-mail message may contain confidential or proprietary information. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. HealthMarkets(r) is the brand name for products underwritten and issued by the insurance subsidiaries of HealthMarkets, Inc. -The Chesapeake Life Insurance Company(r), Mid-West National Life Insurance Company of TennesseeSM and The MEGA Life and Health Insurance Company.SM ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@bama.ua.edu with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
