iSeries security -- Fact or Fiction?

Security expert Carol Woodbury provides advice to Search400.com's members on a regular basis. Do you feel you're also an iSeries security guru? Test your knowledge against some of Carol's Q&As.

Carol Woodbury

Security expert Carol Woodbury provides advice to Search400.com's members on a regular basis. Do you feel you're also an iSeries security guru? Test your knowledge against some of Carol's recent Q&As below. Mark each question with either a True or False. Do you agree with Carol's answer? If not, shoot us and e-mail and sound off and we'll post your response to the original question.

Check out Carol book, "Experts' Guide to OS/400 and i5/OS Security" co-authored with Patrick Botz.

  1. It is not possible for the SST user profile be reset.
    Your answer:

    See answer

  2. *CHANGE controls a user's ability to be allowed to answer and delete messages in the QSYSOPR message queue.
    Your answer:

    See answer

  3. To find the users with passwords the same as the profile, you simply have to run the Analyze Default Password (ANZDFTPWD) command.
    Your answer:

    See answer

  4. If you change one password composition rule system values to (QPWD*), users can change their passwords through the Change Password (CHGPWD) command to be a default password.
    Your answer:

    See answer

  5. Error message "CPF2234" means that a user has entered a password that isn't valid.
    Your answer:

    See answer

  6. To audit all of the commands entered by a particular user use the Change User Audit (CHGUSRAUD) command, specifying the user profile to audit and *CMD for the AUDLVL parameter.
    Your answer:

    See answer

  7. i5/OS never uses User Class to default the special authorities given to the profile when the profile is created.
    Your answer:

    See answer

  8. i5/OS does not have encryption capabilities.
    Your answer:

    See answer

  9. It is considered a best practice to have all profiles default to *PUBLIC *CHANGE.
    Your answer:

    See answer

  10. The best way to monitor QSECOFR is through the audit journal.
    Your answer:

    See answer



This was first published in October 2006

Dig deeper on iSeries system and application security

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

SearchEnterpriseLinux

SearchDataCenter

Close