Has anyone else noticed their posts deleted?
My posts re: zMFA are gone. Poof.
--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
The regulations are from NY state, NYDFS.
https://www.dfs.ny.gov/system/files/documents/2023/12/rf23_nycrr_part_500_amend02_20231101.pdf
500.7 Access privileges and management.
500.7(c) Each class A company shall monitor privileged access activity and
shall implement:
(1) a
In the process you describe, could I still while logged into tso/ispf change my
password in RACF, bypassing the AD routine?
// JOB (ACCT INFO),'PGMR INFO',
// CLASS=??,MSGCLASS=??,NOTIFY=userid,
// USER=userid,PASSWORD=(OLDPASS,NEWPASS)
//IEBFR14 EXEC PGM=IEFBR14
Do you know if there's any development to ingest the list of passwords known to
be involved in breaches, and match RACF password changes against them?
--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email
This is very promising. Do you know where I can read more about ZMFA?
I'm interested in knowing how to configure the external source, and how the
token is passed back to RACF, and how long the token lasts.
For example, if systems programmers are working a problem, we wouldn't want the
Commonly used passwords and those found in breaches (dark web for example).
P@$$w0rd, etc.
--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO
This is exactly where I'm going.
I think IBM should, if they haven't already, find a way to register the
frequently found passwords and make an option to scan the PW in RACF.
There may be a liability, but certainly a disclaimer can be included in the
license.
If this already exists, a
My company wants an external password manager to substitute for RACF.
I need to know if anyone has experience with this, or common password matching
in RACF.
Background
Regulations NYDFS require preventing common passwords to be used.
Vendor tools (Courion, CyberArk, etc.) have a corpus to
be cleared/emptied before the
reconfiguration happens?
7. How long does reconfiguration take?
Is there anything else I should consider before taking this request to the
storage group?
Any information or advice is appreciated.
Thank you. Linda Hagedorn
Hi. We will be auditing WebSeal in-house and are looking for the appropriate
CIS benchmarks.
Does anyone know the CIS benchmarks for WebSeal?
Our searches have been unproductive. The CIS site is here:
https://www.cisecurity.org/cis-benchmarks/
We searched for:
. Webseal
.
Hi,
I need a referral about remediating AIX scripting that was written with
passwords in clear text. These are maintenance scripts, batch jobs, etc.
I have a inherited an AIX platform with scripts with passwords in clear text.
They are now hashed, but that is insufficient and they need to
Thank you. I'll read up.
--
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
This is regarding Websphere. I've inherited a WAS platform with scripts
containing passwords in clear text. I have to remediate this, and came to
ibm-main for advice. This is on AIX. I normally manage DB2 on Z, and just
accepted the WAS area.
Can anyone refer me to a manual, Redbook, or
Hi. I'm looking for help and ideas with OnDemand on DB2 on z/OS.
Background:
A large effort was undertaken to move the OnDemand application from DB2 on z/OS
(DB2) to DB2 LUW on AIX (LUW).
OnDemand is up for a week at a time, coming down only for IPL. The DB2
accounting record is
Remember IBM's Master The Mainframe Contest students.
In addition to making a z platform case, there's a fresh group of trained kids
available every year.
Sent from my iPhone
On Apr 16, 2015, at 5:03 PM, Graham Hobbs gho...@cdpwise.net wrote:
Points taken Tim. Hadn't seen that link
The bad SQL is usually tablespace scans, and/or Cartesian product. They are
relatively easy to identify and cancel.
MVS reports the stress in prod, the high CPU use on the dev lpar, and I find
the misbehaving thread and cancel it. Mvs reports things then return to
normal.
The perplexing
16 matches
Mail list logo