It's a good thing when valid, authenticated users can access items that
they have the authority to access, right?


                                                                           
             "Ingvaldson,                                                  
             Scott"                                                        
             <SIngvaldson@guid                                          To 
             eone.com>                 <midrange-l@xxxxxxxxxxxx>           
             Sent by:                                                   cc 
             midrange-l-bounce                                             
             s@xxxxxxxxxxxx                                        Subject 
                                       RE: iSeries FTP security            
                                                                           
             05/16/2005 03:14                                              
             PM                                                            
                                                                           
                                                                           
             Please respond to                                             
             Midrange Systems                                              
                 Technical                                                 
                Discussion                                                 
             <midrange-l@midra                                             
                 nge.com>                                                  
                                                                           
                                                                           




That's just our old buddy Shalom with more FUD...

"Because the built-in FTP server provides full access to the IFS, a
valid, authenticated user, can access and retrieve via FTP all of the
database tables and all of the files that he has authority to access,
based on the server assigned object authority."

Emphasis on valid, authenticated user.

Regards,

Scott Ingvaldson
iSeries System Administrator
GuideOne Insurance Group

-----Original Message-----
date: Mon, 16 May 2005 14:45:11 -0400
from: Neil Palmer/DPS <neilp@xxxxxxxxxxx>
subject: iSeries FTP security

FYI

http://www.exploits.co.in/Article909.html

...Neil

--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
To post a message email: MIDRANGE-L@xxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx
Before posting, please take a moment to review the archives
at http://archive.midrange.com/midrange-l.


_____________________________________________________________________________

Scanned by IBM Email Security Management Services powered by MessageLabs.
For more information please visit http://www.ers.ibm.com
_____________________________________________________________________________


ForwardSourceID:NT0002168A

_____________________________________________________________________________
Scanned by IBM Email Security Management Services powered by MessageLabs. For 
more information please visit http://www.ers.ibm.com
_____________________________________________________________________________

As an Amazon Associate we earn from qualifying purchases.

This thread ...

Replies:

Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.