Jim,
the problem is probably just that PerfKit kills Web connections that were
found to be idle for over 30 minutes, so anything entered after a longer
pause that is not a new Logon request will be considered an incorrect
request. Nothing to do with RACF ..
Eginhard Jaeger
----- Original Message -----
From: "Jim Bohnsack" <jab...@cornell.edu>
To: <IBMVM@LISTSERV.UARK.EDU>
Sent: Friday, June 05, 2009 3:51 PM
Subject: [?? Probable Spam] PERFSVM security
Quite often when I reconnect PERFSVM, I'll see messages such as below:
FCXWWW585E Incorrect request format:
WEBSERVhttp://www.sciencedirect.com/
FCXTCP592I User at 221.6.184.157:47911 reset: Idle for over 30
min.
FCONRMT AUTHORIZ on my systems spells out by nodeid and userid who can
issue commands and by nodeid and * for who can request data. The
systems run RACFVM so when a user connects to PERFSVM via a web
interface, the id has to logon with a valid userid and pw.
Is there an exposure here that I'm missing? We do not run with a system
wide firewall. Yes, I know that's a problem, but academic freedom and
all that stuff.
Jim
--
Jim Bohnsack
Cornell University
(972) 596-6377 home/office
(972) 342-5823 cell
jab...@cornell.edu
