Gadi wrote: >Does IBM publish a list of PTFs that are related to security,
Sort of, but you got good replies, especially from J Eels who kindly posted an URL for you. You can also subscribe to "Red Alerts" and you will get emails in case there is an "Red Alert". If I remember correctly, even things like "heart bleed" for OpenSSL (Ported Tools) and so on were covered in those "Red Alert". Of course, IBM will not tell you exactly what type of errors/problems are fixed or how it was discovered in the first place. They usually just say this: "Here is a fix, apply it.". >especially preventing unauthorized access from outside the mainframe. What access do you want to prevent? There are several layers of protection available starting at firewalls in your enterprise, then firewalls and correct TCP/IP settings (SSL, lockup of ports, etc.) on your mainframe. RACF and application security are other layers. Groete / Greetings Elardus Engelbrecht ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
