Re: PCI Compliance - Encryption of all non-console administrative access.
- From: Darren.Gavin@xxxxxxxxxxx (GAVIN Darren * OPS EAS)
- Date: 31 Jul 2007 15:07:07 -0700
By default where I work, all tn32070 is encrypted with SSL (no matter if
administrator or not). We use Passport PC to Host and Web to Host as
the emulators.
For secure FTP we use WS FTP Pro.
Not sure if this helps you, but that's how we secured terminal data
streams at our shop.
Darren
-----Original Message-----
From: IBM Mainframe Discussion List [mailto:IBM-MAIN@xxxxxxxxxxx] On
Behalf Of Hal Merritt
Sent: Tuesday, July 31, 2007 2:40 PM
To: IBM-MAIN@xxxxxxxxxxx
Subject: Re: PCI Compliance - Encryption of all non-console
administrative access.
I guess that makes me half right, half wrong, a half wit, or some
combination thereof :-))
I'll admit that I tend to think in binary (albeit mostly zeros) and I
consider an administrator's ID to be somewhat sensitive traffic. Of
course, many (most?) might disagree. I don't think PCI is that granular.
I'll also freely admit that SSH seems to be an excellent solution for
interactive *nix sessions. But we need secure 'green screen' TN3270 TSO
and automated batch FTP.
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to listserv@xxxxxxxxxxx with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html
.
- References:
- Prev by Date: RE: PCI Compliance - Encryption of all non-console administrative access.
- Next by Date: Re: Execute a Unix Shell Script via Mainframe FTP
- Previous by thread: RE: PCI Compliance - Encryption of all non-console administrative access.
- Next by thread: Re: PCI Compliance - Encryption of all non-console administrative access.
- Index(es):
Relevant Pages
|
