Why implement System i security anyway?

Another part of the reason why so many System i shops have not implemented security can be found from their history. Many of these shops grew up on predecessor systems such as the System/36 and System/38. On those systems, access was restricted to devices that attached by unique twin-ax cabling. This effectively insulated the CPU from the outside world. Security implemented at the menu level was very effective in limiting functions to those who were authorized. But, everyone knows that this is just not the case any longer. Most shops are now fully networked and most System i users connect via a network connection. In today's networked world, this just doesn't cut it any longer. Anyone with a PC and broad system authorities can access and manipulate just about any data on your system. If your system is accessible from the Internet, someone can easily access your system via FTP and you might never know it when it happens.

Just having a system that is known as a very secure system won't keep you from getting in trouble. The tools do you no good if they just sit on your workbench unused. If you're feeling guilty at this point in your reading, do something about it now. Don't end up in the headlines like the recent problems at TJX (the parent company of TJ Maxx) who now hold the record for the most credit card information stolen.

If you have any questions about this topic send me an email, I'll try to answer any questions you may have. All email messages will be answered.

---------------------------
About the author: Rich Loeber is president of Kisco Information Systems Inc. in Saranac Lake, N.Y. The company is a provider of various security products for the iSeries market.

Rate this Tip To rate tips, you must be a member of Search400.com. Register now to start rating these tips. Log in if you are already a member. Submit a Tip Digg This!     StumbleUpon     Del.icio.us    RELATED CONTENT iSeries security tips Security considerations for IBM i backups Developing a security incident response system for System i Tracking remote access users on System i Setting up security for programmers on IBM i Controlling remote access on your IBM i Checking in on your IBM i authorization lists PCI data security standards and the System i Securing the integrated file system on IBM System i Contextual security on IBM i: Limit user profile access Time for a security checkup for your i iSeries system and application security Developing a security incident response system for System i Setting up security for programmers on IBM i Blocking AS/400 DB2 users Trouble accessing IFS path from Win2k3 server Checking in on your IBM i authorization lists Strategies for securing IBM i production files Changing password security levels and upgrading operating systems on the IBM i Determine the value of parameter UPPWEI in the DSPUSRPRF field Define journal code value "K" Modify content within a journal receiver file RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary midrange  (Search400.com) RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.