RE: AS400 Net Recon

["Bob Woods" <bwoods () atlantiscasino com>]

We have done vulnerability scans including the AS400s on our network
with no problem.  The TCP stack on AS400 servers is really pretty
robust.

As far as books, we have a book that I use regarding AS/400 security, it
has helped me a bunch:

Implementing AS/400 Security by Wayne Madden
2nd edition, copyright 1995, Duke Press
ISBN: 1-882419-20-0

I hope this helps.

---
Bob Woods
IT Security Administrator
Atlantis Casino Resort Spa * Reno
bwoods () atlantiscasino com
(775) 825-4700 x3549


-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
On Behalf Of Jon Kibler
Sent: Tuesday, February 12, 2008 12:12 PM
To: pen-test () securityfocus com
Subject: AS400 Net Recon

Hi,

I have a client with AS400s on their LAN. They want a vulnerability
scan, but having been burned in the past, I want to ask before doing:
Are there any issues with scanning (nmap, nessus, etc.) AS400s?

While I am at it, any good information on AS400 security? I see a few
corporately published books for sale on the net about AS400 security,
but I don't want to drop a couple of grand for a book by some
organization I am not familiar with.

Any help appreciated.

Jon K.

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------


------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------