Correct. I meant FDR or DFDSS or even IRRUTnnn unload. Not IRRDBU00. John McKown
Systems Engineer IV IT Administrative Services Group HealthMarkets(r) 9151 Boulevard 26 * N. Richland Hills * TX 76010 (817) 255-3225 phone * john.mck...@healthmarkets.com * www.HealthMarkets.com Confidentiality Notice: This e-mail message may contain confidential or proprietary information. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. HealthMarkets(r) is the brand name for products underwritten and issued by the insurance subsidiaries of HealthMarkets, Inc. -The Chesapeake Life Insurance Company(r), Mid-West National Life Insurance Company of TennesseeSM and The MEGA Life and Health Insurance Company.SM > -----Original Message----- > From: IBM Mainframe Discussion List > [mailto:ibm-m...@bama.ua.edu] On Behalf Of Chase, John > Sent: Monday, November 29, 2010 6:54 AM > To: IBM-MAIN@bama.ua.edu > Subject: Re: A New Threat for password hacking > > > -----Original Message----- > > From: IBM Mainframe Discussion List On Behalf Of Binyamin Dissen > > > > On Mon, 29 Nov 2010 04:39:54 -0600 Brian Westerman > > <brian_wester...@syzygyinc.com> wrote: > > > > :>It's kind of difficult to use a brute force attack when > RACF revokes > the ID > > :>after a site specified number of attempts. Assuming the site > doesn't allow > > :>1 or 2 character passwords (you don't do you), even if > the site were > to > > :>allow 100 attempts, it's statistically a REALLY long shot to guess > the > > :>password. I would imagine that most sites have 3 or 4 as > the number > of > > :>attempts, making the probability for success of a brute > force attack > too > > :>remote to consider as they wouldn't even get out of the single > character > > :>attempts. > > > > If you have the offload, you can make as many attempts as you wish. > > But the "offload" (did you mean "unload", as produced by IRRDBU00?) > doesn't contain the password.... > > If you meant "backup", then your point is valid. > > -jc- > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, > send email to lists...@bama.ua.edu with the message: GET IBM-MAIN INFO > Search the archives at http://bama.ua.edu/archives/ibm-main.html > > ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@bama.ua.edu with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
