• White Hats Completely Dismantle Menu-Based Security

  February 6, 2023 Alex Woodie

  Think menu-based security can prevent cybercriminals from accessing the most important parts of your IBM i system? Think again, as the white hat hacking group Silent Signal recently demonstrated in a real-world penetration test of a bank’s IBM i system through a seemingly restricted green-screen interface.

  Life was demonstrably simpler for midrange administrators before the Internet took off. Before we had all these different protocols providing access to applications and data – ODBC, FTP, SQL, Remote Command, etc. – an administrator could feel somewhat confident that users weren’t accessing things they shouldn’t by simply configuring their menus in a restrictive …

  Read more

• The Global State of Cybersecurity Is Not Good

  September 14, 2022 Alex Woodie

  “It’s a jungle out there” may be the best way to summarize the state of cybersecurity at the moment, as recent global events coalesce into a melting pot of politically motivated hackers, the criminal underground, foreign scammers, and widespread domestic vulnerabilities.

  Let’s start with everybody’s favorite topic: scams. If you’re longing for the simple days of the Nigerian 419 scams, you’re not alone, as the playing field for scams has evolved considerably in recent years. That’s not to minimize the continued threat of the 419 scam, which sometimes resulted in a physical kidnapping, or worse. But the idea of getting …

  Read more

• Reader Feedback On Guru: The Finer Points of Exit Points

  July 12, 2022 Bruce Bading

  Hey, Alex:

  Hope you are doing well. I was reading this article about exit points and found some technical inaccuracies.

  The Socket Exit can be used to cover the following: You can use exits block all unwanted ports blocked. I will be happy to talk with author of this article to explain how this works.

  • Not all services have exit points available.
  • User defined ports do not have exit points associated.

  Best regards,

  — Tony Perera, Trinity Guard, a division of Fresche Solutions

  ---

  Hey, one and all:

  As the article states, exit points are an enhancement to cybersecurity on the …

  Read more

• Guru: The Finer Points of Exit Points

  June 27, 2022 Bruce Bading

  Many years ago, we received a call from an IBM i customer stating that all exit points were gone and the QAUDJRN and receivers were missing. Then the question, “Do you think we’ve been hacked?” Truth was, the exit points weren’t gone; the associated programs had been de-registered. Conclusion, they had most likely been compromised.

  The IBM i platform is a very securable system that can be secured (Secure vs Secured – What’s the difference?, WikiDiff), if you take steps to secure it.

  On the IBM i, a limited number of functions provide an exit so that your …

  Read more

• New Extension Brings IBM i Closer to VS Code

  August 11, 2021 Alex Woodie

  When it comes to integrated development environments (IDEs), Microsoft is best known for its full-featured Visual Studio offering. But many developers have grown attached to its younger, free-er, and lighter weight cousin, Visual Studio Code (VS Code). And with the new VS Code for IBM i extension recently unveiled by Liam Allan, the skinny IDE’s integration with the midrange server is getting better.

  VS Code for IBM i is an open source extension that allows developers to work with IBM i languages like RPG, COBOL, and CL within VS Code. Allan first released the product in February, but largely kept …

  Read more

• Controlling IBM i Access With Exit Points

  March 29, 2021 Bill Hammond

  Today, the job of managing security on IBM i can be complicated, requiring dynamic technologies and processes that can respond quickly to ever-evolving threats and new regulations. Ransomware and other malware can, and has, infected IBM i systems and effective access control is a major weapon in the battle to secure your IBM i. There are many different approaches and technologies you can use to keep your IBM i secure.

  Using the exit points provided by the IBM i operating system can be a powerful tool to monitor and secure four important levels of access within the IBM i:

  • Networks

  …

  Read more

• Guru: For IBM i Newcomers, An Access Client Solutions Primer

  March 1, 2021 Rob McNelly

  I enjoy reading about IBM i Fresh Faces. Sure, it’s refreshing to see that it’s not just graybeards like me who are working on the platform, but what really matters is that young people are learning about, getting hands-on with, and coming to love IBM i. I appreciate that many of these stories revolve around system/application modernization and open source solutions. This gives newcomers to IBM i a degree of comfort by reducing their learning curve.

  Learning any new technology is challenging. Specifically, how do you go from learning about the concepts to actually getting on a machine and …

  Read more

• The Ultimate Set Of Tools

  December 14, 2020 Rob McNelly

  Those of a certain age will certainly remember the moment in Fast Times At Ridgemont High when Jeff Spicoli got himself into a bind after he wrecked his friend’s car. Luckily, Spicoli’s dad was a TV repairman, and he had an ultimate set of tools. Spicoli knew that with those tools, he could fix it. That level of confidence is intoxicating, although in this case it was possibly misplaced.

  I have a friend that lives around the corner from me that actually does have the ultimate set of tools, and knows how to use them. For example, he recently rebuilt …

  Read more

• VS Code Provides Another Coding Option for IBM i

  December 9, 2020 Alex Woodie

  IBM i shops that are looking for an alternative to IBM’s Rational Developer for IBM i (RDi) may want to check out a lightweight code editor from Microsoft called Visual Studio Code (VS Code). Thanks to extensions for IBM i languages developed by the opensource community, VS Code can support native development in RPG, CL, and SQL.

  First released by Microsoft in 2015, VS Code provides a basic environment for writing and editing code. It features debugging, syntax highlighting, intelligent code completion, snippets, and code refactoring, as well as embedded Git. It runs on Windows, Linux, and Mac, and while …

  Read more

• IBM Brings More Open Source to IBM i

  October 14, 2020 Alex Woodie

  IBM has brought an array of new open source packages to its IBM i operating system with the latest batch of Technology Refreshes, including tools for application developers and systems administrators. It’s all part of IBM’s strategy to keep IBM i on the cutting edge through open source, says IBM’s business architect Jesse Gorzinski.

  Before IBM unveiled IBM i 7.4 TR3 and 7.3 TR9 last week, we’d already written extensively about many the open source package that IBM has brought to the platform. For instance, we told you earlier this year how Apache Kafka and Apache Zookeeper were running on …

  Read more

Previous Articles