400 pts.
 FTP User Exit Programs, TELNET, and Security
In addition to FTP Exit Programs, I have some additional questions that I was hoping someone could help me out with. They are as follows: When this client is logged onto our AS400 (server) from a pc, he (she) will be limited to the following FTP commands; namely, sending files (PUT), and setting the directory. (CD) I also have the need to not allow my client to get in thru TELNET or any other way for that matter. (Our AS400 needs to be locked down from the outside world, and so FTP is just one piece of the puzzle) Do you happen to know of all the exit points that I need to be concerned about, which would ensure that my client is completely locked out of the AS400. In addition to exit points, is there another solution that you know of, that I may have overlooked, or that I should use in addition to the FTP exit programs, which would ensure that my AS400 is locked down from the outside world? Please advise -Nick

Software/Hardware used:
ASKED: February 11, 2008  9:34 PM
UPDATED: March 12, 2010  8:58 AM

Answer Wiki:
Are you behind a firewall? I would lock down ALL the ports from WAN to LAN and open just what you need. Creating EXPLICIT deny rules will take precedence over any other rule (on most major devices) Setting rules on the AS400 machine is like giving your children rules to follow but configuring a firewall properly is like putting a pad lock on the door! Let me know if you need more assistance or help configuring the rules. <a href="http://www.scribd.com/doc/6896/AIX-Security-Guide?query2=AIX++prevent+telnet+login">Or if you have to do it on the AS400 machine check out this awesome document here.</a>
Last Wiki Answer Submitted:  February 13, 2008  4:56 pm  by  Karl Gechlik   9,815 pts.
All Answer Wiki Contributors:  Karl Gechlik   9,815 pts.
To see all answers submitted to the Answer Wiki: View Answer History.


Discuss This Question:
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _


 

We use a product from PowerTech called POWERLOCK which is the pad lock for the AS/400. You deny access to all then when a user cannot get into something on the system you runa reject report and it pinpoints what you need. You can lock doen everyexternal function or just the ones you are worried about. Very granular tool.

Bruce B.

 2,310 pts.

 

Or if you have to do it on the AS400 machine check out this awesome document here.

Why would anyone use an AIX reference to configure AS/400 rules?

Tom

 107,935 pts.