Todd
Why do the security people assume there is a problem? You didn't make that
clear.
Other contributors have alluded to what really matters but not with maximum
clarity - IMNSHO - or I wouldn't be jumping fearlessly in!
What is implied by what you have told us is a *potential* security
@bama.ua.edu] On Behalf Of
Chris Mason
Sent: Friday, May 06, 2011 10:20 AM
To: IBM-MAIN@bama.ua.edu
Subject: Re: RIP issue with HMC - security violation?
Todd
Why do the security people assume there is a problem? You didn't make that
clear.
Other contributors have alluded to what really matters
Programmer
ITSO
(404) 723-2017 (Cell)
-Original Message-
From: IBM Mainframe Discussion List [mailto:IBM-MAIN@bama.ua.edu] On Behalf Of
Chris Mason
Sent: Friday, May 06, 2011 10:20 AM
To: IBM-MAIN@bama.ua.edu
Subject: Re: RIP issue with HMC - security violation?
Todd
Why do
I had an auditor have a similar finding on a device console (can't remember if
it was HMC, Shark, or what). I sent it to the IBM support center. There
response was that the box, OS, and applications comprised a proprietary piece
of equipment that had little customer configuration capability.
I got the following info from one of our security folks today about a potential
security exposure with the HMC. Is it valid that the HMC has a RIP listener
active, or could I potentially turn it off? Any info about this would be
helpful
so I can get the security scan group off my back.
@bama.ua.edu] On Behalf Of
Todd Burrell
Sent: Thursday, May 05, 2011 3:43 PM
To: IBM-MAIN@bama.ua.edu
Subject: RIP issue with HMC - security violation?
I got the following info from one of our security folks today about a potential
security exposure with the HMC. Is it valid that the HMC has
On 5 May 2011 16:42, Todd Burrell z...@cdc.gov wrote:
Description :
The remote RIP listener accepts routes that are not sent by a
neighbor.
This cannot happen in the RIP protocol as defined by RFC2453, and
although the RFC is silent on this point, such routes should probably
be ignored.
Port Scanner is my bet.
Rob Schramm
On Thu, May 5, 2011 at 5:20 PM, Tony Harminc t...@harminc.net wrote:
On 5 May 2011 16:42, Todd Burrell z...@cdc.gov wrote:
Description :
The remote RIP listener accepts routes that are not sent by a
neighbor.
This cannot happen in the RIP
Or Qualys
BobL
-Original Message-
From: IBM Mainframe Discussion List [mailto:IBM-MAIN@bama.ua.edu] On Behalf Of
Rob Schramm
Sent: Thursday, May 05, 2011 3:30 PM
To: IBM-MAIN@bama.ua.edu
Subject: Re: RIP issue with HMC - security violation?
Port Scanner is my bet.
Rob Schramm
Todd,
Have you enabled Routing in the HMC network configuration, there is a check box for this, just turn
it off. Also check in Network Diagnostic Configuration to show what UDP ports are listening.. is 520
there?
Cheers
Roy
Todd Burrell wrote:
I got the following info from one of our
10 matches
Mail list logo
