FTP User Exit Programs, TELNET, and Security

510 pts.
Tags:
AS/400 security
Exit programs
FTP
Telnet
In addition to FTP Exit Programs, I have some additional questions that I was hoping someone could help me out with. They are as follows: When this client is logged onto our AS400 (server) from a pc, he (she) will be limited to the following FTP commands; namely, sending files (PUT), and setting the directory. (CD) I also have the need to not allow my client to get in thru TELNET or any other way for that matter. (Our AS400 needs to be locked down from the outside world, and so FTP is just one piece of the puzzle) Do you happen to know of all the exit points that I need to be concerned about, which would ensure that my client is completely locked out of the AS400. In addition to exit points, is there another solution that you know of, that I may have overlooked, or that I should use in addition to the FTP exit programs, which would ensure that my AS400 is locked down from the outside world? Please advise -Nick
ASKED: February 11, 2008  9:34 PM
UPDATED: March 12, 2010  8:58 AM

Answer Wiki

Thanks. We'll let you know when a new response is added.

Are you behind a firewall? I would lock down ALL the ports from WAN to LAN and open just what you need. Creating EXPLICIT deny rules will take precedence over any other rule (on most major devices) Setting rules on the AS400 machine is like giving your children rules to follow but configuring a firewall properly is like putting a pad lock on the door!

Let me know if you need more assistance or help configuring the rules. <a href=”http://www.scribd.com/doc/6896/AIX-Security-Guide?query2=AIX++prevent+telnet+login”>Or if you have to do it on the AS400 machine check out this awesome document here.</a>

Discuss This Question: 2  Replies

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • Lovemyi
    We use a product from PowerTech called POWERLOCK which is the pad lock for the AS/400. You deny access to all then when a user cannot get into something on the system you runa reject report and it pinpoints what you need. You can lock doen everyexternal function or just the ones you are worried about. Very granular tool. Bruce B.
    2,310 pointsBadges:
    report
  • TomLiotta
    Or if you have to do it on the AS400 machine check out this awesome document here. Why would anyone use an AIX reference to configure AS/400 rules? Tom
    125,585 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following