1.  Home
  2. MIDRANGE-L
  3. August 2007

RE: script to change Client Access .ws profiles

If a users walked away and left the PC unlocked, then they have probably already left a session open
to the iSeries anyway.

I agree with Rob, having the PC lock after xx minutes of inactivity is a good idea.

Charles


-----Original Message-----
From: midrange-l-bounces@xxxxxxxxxxxx
[mailto:midrange-l-bounces@xxxxxxxxxxxx] On Behalf Of Steve Martinson
Sent: Tuesday, August 14, 2007 9:26 AM
To: midrange forum
Subject: Re: script to change Client Access .ws profiles

It's more for bypassing the green screen telnet signon that
passes the
pwd
in clear text.
(or have they fixed this? this site running an old CA Express).

To my knowledge, this has not been fixed. Good idea that's
been around for a while, as long as your users control access
to their desktop.

Risk has been defined in many ways, but when looking at IT
governance, I like this one: "the threat or probability that
an action or event, will adversely or beneficially affect an
organizations ability to achieve its objectives."

So, when looking at this from a risk assessment perspective,
what is more likely to occur on the inside - a rogue user
hooking a sniffer up to the network and snagging the port 23
clear text passwords, OR someone accessing another user's
desktop while they're temporarily away and having the ability
to fire up a CA session that doesn't force signon?

Best regards,

Steven W. Martinson, CISSP, CISM
Sheshunoff Management Services, LP.
Senior Consultant - Technology & Risk Management
2801 Via Fortuna, Suite 600 | Austin, TX 78746
Direct: 281.758.2429 | Mobile: 512.779.2630
e.Mail: smartinson@xxxxxxxxx



______________________________________________________________
______________________
Building a website is a piece of cake. Yahoo! Small Business
gives you all the tools to get online.
http://smallbusiness.yahoo.com/webhosting
--
This is the Midrange Systems Technical Discussion
(MIDRANGE-L) mailing list To post a message email:
MIDRANGE-L@xxxxxxxxxxxx To subscribe, unsubscribe, or change
list options,
visit: http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx Before posting,
please take a moment to review the archives at
http://archive.midrange.com/midrange-l.




This e-mail transmission contains information that is intended to be confidential and privileged. If you receive this e-mail and you are not a named addressee you are hereby notified that you are not authorized to read, print, retain, copy or disseminate this communication without the consent of the sender and that doing so is prohibited and may be unlawful. Please reply to the message immediately by informing the sender that the message was misdirected. After replying, please delete and otherwise erase it and any attachments from your computer system. Your assistance in correcting this error is appreciated.


As an Amazon Associate we earn from qualifying purchases.

This thread ...
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2025 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.