On Friday, 04/27/2007 at 02:51 AST, Duane Weaver <[EMAIL PROTECTED]>
wrote:
> Is TCPIP on zVM set up by default for anonymous ftp? How do i check
> to make sure this is turned off on my system?
It is off by default.
Alan Altmark
z/VM Development
IBM Endicott
>Why do I suddenly feel like a little duck, slowly traveling along the top edge
>of a piece of plywood?
Sorry about that last post, one click too quick. I'll take a shot answering
that question... because many VM sysprogs really CARE about VMn and want it to
grow. The non-pervasive highly per
>Why do I suddenly feel like a little duck, slowly traveling along the top edge
>of a piece of plywood?
- Original Message -
From: "Kurt Acker" [EMAIL PROTECTED]
Sent: 04/27/2007 06:06 PM
To: IBMVM@LISTSERV.UARK.EDU
Subject: Re: FYI APAR HIPER flag change (cross posted)
Well, maybe we
I know I'm coming a little late to this party, but this is *almost* what
Richard is looking for. This qualifies as a penetration, but not a penetration
*by hackers*.
Back when the FTP server was modified (rewritten?) to use the new surrogate
facility in CP, we had a user who tried to FTP a file
Well, maybe we should have tried to define 2 new levels of HIPER (and this
is NOT an official statement from IBM on the subject) :
Halfway HIPER (H2 APAR's)
These are HIPER APAR's that are not a concern to every z/VM user (HIPER
only if you meet some certain condition), and in that case they wil
> All HIPER APARs are not necessarily "PERVASIVE" and as such may not be
put on the RSU.
Not to shoot the messenger... but doesn't HIPER specifically stand for
HIghly PERvasive? Now we (and new-to-IBM Linux customers) are expected to
understand in IBM-speak that not only are Program Temporary
I am not aware of any documented case where VM has been penetrated by
hackers (a term to which I take strong exception).
The use of a looping channel program is not a system penetration as such, as
the person responsible was also authorized to the system, but was rather a
misuse of the authority g
Greetings,
If you follow HIPER APAR's, please do not be alarmed. This note
explains some changes that caused us to review all active APAR's, and
change the HIPER flag when needed.
System z, z/VM APAR HIPER and RSU process changes:
IBM's current service guidelines requires all APARs that resu
Don't know if it's still there, but VMFINS used to have a NOSETUP option
(according to my z310 reference). That preceded by the previously
suggested VMFSETUP ... (RETAIN , or alternately creating a PPF override
with a :RETAIN tag, would probably get you what you need.
Anne Crabtree wrote:
I
Hello Duane,
In TCPMAINT 198 there should be a SRVRFTP CONFIG or
in the DTCPARMS files for TCP/IP.
; ==
; Server Administration and Diagnosis Statements
; ==
Is TCPIP on zVM set up by default for anonymous ftp? How do i check
to make sure this is turned off on my system?
This announcement raises more questions than it answers; I
wonder if we'll look back at this in ten years time as the
beginning of a new future for the mainframe:-)
I'd like to learn how will these Cell processors will be
incorporated into the zSeries architecture and how will they
be exploite
> We are planning to make z/VM Linux production with RACF on VM,
> I would like to know what is best practices for handling
> security under Linux/VM and how other shops handing security
> for Linux.
Since the two environments are fairly cleanly separated, treating them
as two entities; one affili
I did do vmfsetup first, but it redid it automatically in the vmfins
install... so it wasn't there. I finally made 500 A and that worked.
Anne D. Crabtree
System Programmer
WV Dept of Administration - OT
304-558-5914 ext 8885
Fax 304-558-1351
>>> [EMAIL PROTECTED] 4/27/2007 1:53 PM >>>
Hello Ann
Hello Ann,
I would suggest doing the VMSETUP first. Find the highest mode
available and use that as your 500 drive.
But (IIRC) I made 500 my A and made my 191 the next available
highest.
That way I kept all the files and things created during the service on
500.
Ed Martin
Aul
> (OK, this makes almost no sense; the only way I can make it remotely
do so
> is if it means that they're using Cell BE as the underlying chip,
> microprogrammed to do z/Architecture. Maybe as the zIIP or zAAP or
zOOP*
> engines?)
Oh, it makes lots of sense, actually. Many risk analysis algorith
You can use the retain option as in VMFSETUP ZVM CP (RETAIN R T Z
Regards,
Richard Schuh
-Original Message-
From: The IBM z/VM Operating System [mailto:[EMAIL PROTECTED] On
Behalf Of Shimon Lebowitz
Sent: Thursday, April 26, 2007 5:27 PM
To: IBMVM@LISTSERV.UARK.EDU
Subject: Re: Service
I seem to remember that if you want a disk
to survive VMFSETUP, it must be accessed as C.
(But I havent done any service in ages)
Shimon
P.S. Dave, why do you have a "Reply-to" header in your email?
It overrode the default of 'reply to list', and I almost sent this directly
to you, until I notice
As seen on ibm-main:
http://www.youtube.com/watch?v=F63tYLhiqZ8
--
Rich Greenberg N Ft Myers, FL, USA richgr atsign panix.com + 1 239 543 1353
Eastern time. N6LRT I speak for myself & my dogs only.VM'er since CP-67
Canines:Val, Red, Shasta & Casey (RIP), Red & Zero, Siberians Owner:Chi
Phil Smith (phsiii) wrote:
"* zOOP: z Object Oriented Processor. My made-up name for whatever comes
next -- I like "zIIP, zAAP, zOOP!" as a marketing slogan..."
Personally, since zIIP specialty engine processor was announced, I'm been
suggesting the next one be called the "zOWE". That would ma
We use VM RACF to secure all our z/VM LPARs with a total of 200+ linux servers.
VM RACF protects, of course, logon passwords (extended with a local exit),
rules based permissions for mdisk, vswitch, vlans, rdrs, ftp. Although RACF VM
is an z/OS based product, it gets the job done admirably on
Jim,
Thanks, I read about that article, What are the other alternatives ?
We may not upgrade to z/VM 5.3 until 2008.
Thanks,
Ann Chang
(212) 578 - 8297(O)
(212) 578 - 9877(Fax)
"Jim Elliott <[EMAIL PROTECTED]>"
Sent by: "The IBM z/VM Operating System"
04/27/2007 09:24 AM
Please respon
Gotcha! Since I barely know what I'm doing, I certainly didn't create
anything more. Thanks for the help.
Anne D. Crabtree
System Programmer
WV Dept of Administration - OT
304-558-5914 ext 8885
Fax 304-558-1351
>>> [EMAIL PROTECTED] 4/27/2007 9:43 AM >>>
I think that the message means"if you w
>From http://www.msnbc.msn.com/id/18325591/ :
ARMONK, N.Y. - The powerful "Cell" microprocessor that fuels Sony Corp.'s
PlayStation 3 video game console will be available in IBM mainframe computers
so those high-performance machines can run complex online games and virtual
worlds.
Jointly deve
I think that the message means"if you would have created more than one GCS
system, what means you created your own GCS load list, you need to build
these other GCSes with
vmfbld ppf zvm {gcs|gcssfs} myExtraGcsBldlist (all
2007/4/27, Anne Crabtree <[EMAIL PROTECTED]>:
I am working on service an
I am working on service and have reached the gcs component. I have completed
the build step. A note in service guide says "If the results of the VMFVIEW
command show that the GCTLOAD build list was serviced (it does) , then any new
GCS nucleus build list(s) that you added will need to be buil
> We are planning to make z/VM Linux production with RACF on VM,
> I would like to know what is best practices for handling
> security under Linux/VM and how other shops handing security
> for Linux.
Anne:
Check out http://www.vm.ibm.com/security/ (look for the papers at
the bottom of that web pa
Good morning,
We are planning to make z/VM Linux production with RACF on VM,
I would like to know what is best practices for handling security under
Linux/VM
and how other shops handing security for Linux.
Thanks,
Ann Chang
(212) 578 - 8297(O)
(212) 578 - 9877(Fax)
The information contained
The following message is a courtesy copy of an article
that has been posted to bit.listserv.vmesa-l,alt.folklore.computers as well.
George Haddad wrote:
> The last major hole I can recall was in the late 80s or early 90s IIRC,
> where it was discovered that when sending an SMSG to an SVM (I thin
29 matches
Mail list logo