I have found this useful.
This Link was posted previously. Thanks ??? http://www.as400.ibm.com/tstudio/secure1/advisor/secwiz.htm iSeries Security Advisor Welcome to the iSeries Security Advisor! If you are new to the iSeries, new to security implementation on the iSeries, or the environment in which you run your iSeries has recently changed, this tool will generate a list of recommendations that you can use as a starting point for your security policies. Answer the questions below, and then click on "Calculate Recommendations." You'll be presented with a list of recommended security-related system values along with suggestions for scheduling basic security and audit journal reports. The security-related system values implement basic security policy on your machine. The reports, when scheduled to run periodically, help you ensure those policies are followed, are not changed without your approval, and help you monitor security-related events on your system. The advisor will also generate a CL program that you can cut-and-paste and then edit for your own use. This may be a very silly question. But I am desperate for advice from one of you "security wizards", as I need to convince a client to immediately evaluate altanative security solutions ASAP, as they are exposing their internal network to the Internet without a firewall. Their argument is that the servers are AS/400 and they claim that the platform does not have any security holes or vulnerabilities that a potential hacker could exploit. So they feel they don't need a firewall. Although I am aware of 2 vulnerabilities on the Domino AS/400 (They are using DOMINO too) I don't have adequate knowledge and can not site incidents on hacking the AS/400. Any advice, references,links etc --- MUCH MUCH appreciated ! Ta RJ ********************************************************************** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote also confirms that this email message has been swept by MIMEsweeper for the presence of computer viruses. www.mimesweeper.com **********************************************************************
