Q

Vendors FTP to and from the iSeries

We currently have a requirement for a vendor to FTP data to and from our iSeries (V4R5). I have created a single library for this purpose. How can I secure the FTP process whereby they can only use that library and no others?

I'm using an FTP exit program to limit all FTP access to only known users and IP addresses. I have also assigned them a unique User ID and password.

You have a couple of options. Since you are requiring a unique user ID for this operation, you could exclude this user ID from all of the rest of your system libraries. So the only library this user has authority to is the specific library.

Second, you could do a little more with your exit program. Part of the information you're getting includes the object being FTP'd. You could examine this information in your exit program and not allow the operation to continue if the object is not in the specific library.

==================================
MORE INFORMATION ON THIS TOPIC
==================================

The Best Web Links: Tips, tutorials and more.

Search400.com's targeted search engine: Get relevant information on security.

Ask your systems management questions--or help out your peers by answering them--in our live discussion forums.

Read this Search400.com Featured Topic: Secure your iSeries

This was first published in January 2003

Dig deeper on iSeries system and application security

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

SearchEnterpriseLinux

SearchDataCenter

Close