A Virus exploits a system integrity vulnerability. About five years
ago, I was engaged to investigate a z/OS facility for system integrity
vulnerabilities and, through that work, have developed a product, the
z/OS Vulnerability Analysis Tool, that does a system vulnerability
assessment on z/OS. Since we started using the tool commercially, in the
last two years, we have found close to 100 system integrity
vulnerabilities in z/OS and ISV products. So, your Auditors are correct
-- you should be investigating your systems for integrity
vulnerabilities. For more information, please visit www.vatsecurity.com
<http://www.vatsecurity.com> and attend one of our webinars or contact
us so we can discuss it.
Ray Overby
Key Resources, Inc.
[email protected]
On 1/28/2011 12:27 PM, Jim Marshall wrote:
Auditors came around and wrote up our z/OS V1R10 Sysplex for not running a
Virus Checker. Anyone has a constructive solution as to one being available or
some verbage which defends the position.
Been hunting around for a Virus Checker for zLinux. Also interested in what
kind of over head it might use.
thanks jim
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html
