Fwd: AS400 Net Recon
- From: Sat Jagat Singh <flyingdervish@xxxxxxxxx>
- Date: Fri, 15 Feb 2008 08:33:26 -0800 (PST)
When I had the same issue a few months ago, I found
"Hacking iSeries" by Shalom Carmel useful. Check out
his site at:
http://www.venera.com/
The book is pretty good and recommended if you want to
get the most concise information quickly. But you can
get most of the same information just by reading the
whitepapers posted there in conjunction with following
the URLs on the References and links page. The IBM
Redbook series is particularly good for a background
on how security on the iSeries is suppose to work.
Some of the most common security errors on these
systems appears to be open SMB file shares and default
passwords.
Best of luck to you.
--- Jon Kibler <jon.r.kibler@xxxxxxxxx> wrote:
From Jon Kibler Tue Feb 12 12:11:43 2008<pen-test-return-1078485978-flyingdervish=yahoo.com@xxxxxxxxxxxxxxxxx>
X-Apparently-To: flyingdervish@xxxxxxxxx via
206.190.38.156; Thu, 14 Feb 2008 21:34:40 -0800
X-Originating-IP: [205.206.231.26]
Return-Path:
Authentication-Results: mta502.mail.mud.yahoo.comh=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition;
from=gmail.com; domainkeys=fail (bad sig)
Received: from 205.206.231.26 (EHLO
outgoing.securityfocus.com) (205.206.231.26)
by mta502.mail.mud.yahoo.com with SMTP; Thu, 14
Feb 2008 21:32:40 -0800
Received: from outgoing.securityfocus.com by
outgoing.securityfocus.com
via smtpd (for
mta-v8.mail.vip.mud.yahoo.com [209.191.118.103])
with ESMTP; Thu, 14 Feb 2008 21:15:07 -0800
Received: from lists.securityfocus.com
(lists.securityfocus.com [205.206.231.19])
by outgoing2.securityfocus.com (Postfix) with QMQP
id 6BFD41437F3; Thu, 14 Feb 2008 21:26:18 -0700
(MST)
Mailing-List: contact
pen-test-help@xxxxxxxxxxxxxxxxx; run by ezmlm
Precedence: bulk
List-Id: <pen-test.list-id.securityfocus.com>
List-Post: <mailto:pen-test@xxxxxxxxxxxxxxxxx>
List-Help: <mailto:pen-test-help@xxxxxxxxxxxxxxxxx>
List-Unsubscribe:
<mailto:pen-test-unsubscribe@xxxxxxxxxxxxxxxxx>
List-Subscribe:
<mailto:pen-test-subscribe@xxxxxxxxxxxxxxxxx>
Resent-Sender: listbounce@xxxxxxxxxxxxxxxxx
Sender: listbounce@xxxxxxxxxxxxxxxxx
Errors-To: listbounce@xxxxxxxxxxxxxxxxx
Delivered-To: mailing list
pen-test@xxxxxxxxxxxxxxxxx
Delivered-To: moderator for
pen-test@xxxxxxxxxxxxxxxxx
Received: (qmail 2243 invoked from network); 12 Feb
2008 21:17:40 -0000
DKIM-Signature: v=1; a=rsa-sha256;
c=relaxed/relaxed;
d=gmail.com; s=gamma;
b=HY5KsaKvukCK77b2reiZ3y16EupWNOZ6NZOxTJLIakF4GabqP132QLPl475nboZMOIc7Zfo+JIAw65mmes5G8/Uw2YTQnkUb3L68XRVtIc62VFoeR92OQ91pA/ZvjiHNhxxIVQKp3OeuM/JWYrqeofQDcx5rdk3ohOzITnche30=
bh=CXhMForDIWB8baGZP0W7R6lPnPEI+qpslF4o4+m3EeM=;
DomainKey-Signature: a=rsa-sha1; c=nofws;h=message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition;
d=gmail.com; s=gamma;
b=cfGGdfptK0jDX9LYqQfIE6R55v0XrlahLBKTXzcHhM+p4nkuQqlT5Iesx3lwWKUuCC83BjRsA1vELA0uJvrsLBhf7ZytLPVcxOqG1U4HUBDol/XEgF9o95l4Cc1hlkK0L+iRMN9TjkipLutRIZcZIHqPLKhHouKYd+P0EWwTGJg=
Message-ID:<f69ec0c70802121211k2fd1d959lc7ec79c049a540ba@xxxxxxxxxxxxxx>
Date: Tue, 12 Feb 2008 15:11:43 -0500<20080215042618.6BFD41437F3@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
From: "Jon Kibler" <jon.r.kibler@xxxxxxxxx>
To: pen-test@xxxxxxxxxxxxxxxxx
Subject: AS400 Net Recon
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
Resent-Message-Id:
Resent-Date: Thu, 14 Feb 2008 21:26:18 -0700 (MST)------------------------------------------------------------------------
Resent-From:
pen-test-return-1078485978@xxxxxxxxxxxxxxxxx
Content-Length: 835
Hi,
I have a client with AS400s on their LAN. They want
a vulnerability
scan, but having been burned in the past, I want to
ask before doing:
Are there any issues with scanning (nmap, nessus,
etc.) AS400s?
While I am at it, any good information on AS400
security? I see a few
corporately published books for sale on the net
about AS400 security,
but I don't want to drop a couple of grand for a
book by some
organization I am not familiar with.
Any help appreciated.
Jon K.
This list is sponsored by: Cenzic------------------------------------------------------------------------
Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE
today!
http://www.cenzic.com/downloads
____________________________________________________________________________________
Be a better friend, newshound, and
know-it-all with Yahoo! Mobile. Try it now. http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ
------------------------------------------------------------------------
This list is sponsored by: Cenzic
Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!
http://www.cenzic.com/downloads
------------------------------------------------------------------------
- Prev by Date: Re: AS400 Net Recon
- Next by Date: Re: removing metadata from documents
- Previous by thread: RE: AS400 Net Recon
- Next by thread: Thanks to all, ExploitSearch in Top5 security must-have
- Index(es):
Relevant Pages
|
|
