Re: z/OS, OS/390 Pen testing tips/ideas/papers?

From: miguel.dilaj@pharma.novartis.com
Date: 01/29/03

  • Next message: visigoth: "Re: z/OS, OS/390 Pen testing tips/ideas/papers?" 
    To: "Nick Jacobsen" <nick@ethicsdesign.com>
From: miguel.dilaj@pharma.novartis.com
Date: Wed, 29 Jan 2003 09:20:49 +0100

    Hi Nick

    This post is so simple that I expect the moderator of pen-test to drop it
    ;-)
    I've no former experience with pen-testing mainframes, but I've a bit of
    info I discovered while sniffing a network.
    In this network there was an IBM AS/400 with OS/400 v4.2, accessed using
    Client Access from NT machines.
    The info you can sniff from the wire "looks" like garbage, but if you look
    at it using EBCDIC (not ASCII) all communications were in clear text.
    I did some research at this time, and it seems that there's a patch for
    OS/400 v4.3 and above to implement SSL encryption.
    Kind regards,

    Miguel Dilaj

    "Nick Jacobsen" <nick@ethicsdesign.com>
    28/01/2003 13:24
    Please respond to "Nick Jacobsen"

     
            To: <pen-test@securityfocus.com>
            cc:
            Subject: z/OS, OS/390 Pen testing tips/ideas/papers?

    Hi all,
        One of my clients has an IBM OS/390 running on one of their networks I
    am doing some security testing on, and considering I really have not dealt
    with any IBM mainframes before when it comes to security, I was hoping
    that
    some of you might be able to point me the right direction. Anything would
    be helpful, but especially from a penetration viewpoint.

    Thank You,
    Nick Jacobsen
    Ethics Design
    nick@ethicsdesign.com

    ----------------------------------------------------------------------------
    This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
    Service. For more information on SecurityFocus' SIA service which
    automatically alerts you to the latest security vulnerabilities please see:
    https://alerts.securityfocus.com/

    Relevant Pages

    • SecurityFocus Microsoft Newsletter #50
      ... Subject: SecurityFocus Microsoft Newsletter #50 ... Specialist in Microsoft's Security Services Partner Program, ... Network Monitoring for Intrusion Detection ... Relevant URL: ...
      (Focus-Microsoft)
    • << SBS News of the week - Sept 26 >>
      ... And he points to the info you need to put the file on the server in the ... at the network perimeter. ... The Symantec Firewall/VPN and the Gateway Security ... by the firewall at risk. ...
      (microsoft.public.backoffice.smallbiz2000)
    • Re: << SBS News of the week - Sept 26 >>
      ... > And he points to the info you need to put the file on the server in the ... > at the network perimeter. ... The Symantec Firewall/VPN and the Gateway Security ... An attacker can exploit these flaws in tandem via specially ...
      (microsoft.public.backoffice.smallbiz2000)
    • << SBS News of the week - Sept 26 >>
      ... And he points to the info you need to put the file on the server in the ... at the network perimeter. ... The Symantec Firewall/VPN and the Gateway Security ... by the firewall at risk. ...
      (microsoft.public.windows.server.sbs)
    • Re: << SBS News of the week - Sept 26 >>
      ... > And he points to the info you need to put the file on the server in the ... > at the network perimeter. ... The Symantec Firewall/VPN and the Gateway Security ... An attacker can exploit these flaws in tandem via specially ...
      (microsoft.public.windows.server.sbs)