1 / 21

„What can happen when you put your CICS on the web“ Martin Trübner

„What can happen when you put your CICS on the web“ Martin Trübner. Front page. Current config. Paul L'Heureux On VSE-L: OK, I have a real problem that just sprung up today and it is killing us. Multiple cwxn transactions are appearing in PRODCICS.

ayasha
Download Presentation

„What can happen when you put your CICS on the web“ Martin Trübner

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. „What can happen when you put your CICS on the web“ Martin Trübner

  2. Front page

  3. Current config

  4. Paul L'Heureux On VSE-L: OK, I have a real problem that just sprung up today and it is killing us. Multiple cwxn transactions are appearing in PRODCICS. This causes ipn166 MESSAGES IN F7 and eventually TCPIP locks up. I have already IPL'd twice. Does anyone know .... The Problem 1 of 3

  5. The Problem 2 of 3

  6. Web server attack There are many methods hackers could use to attack web servers in order to compromise sites they host. Entry points include: • Weak username/password combinations. • Vulnerable web applications. • Vulnerable OS. • Vulnerable web server software, database, tools or libraries.

  7. From the web:input Validation • Root cause of most web hacks • All inputs received should be validated: • data type • data range • Metacharacters • Tampering with hidden fields • Bypassing client side checking (i.e. javascript) But we do all this!

  8. Who is to blame? There is nothing in our legislatur that would change user behaviour TCP is same version since 1 year CICS/TS has not changed in 6 years This program is running since 2003 The 3390 are 3 years old

  9. A look at the process The internet TCP/IP CICS-itself COBOL-INIT Application

  10. The data that comes into CICS is passed to a URM called „the analyser“ This does now some early verification (length and type) TCP/IP process is not changed at all (GETVIS) Application is not changed (double process, but...) Applied changes

  11. A look at the intermediate process The internet TCP/IP CICS-itself Application COBOL-INIT Application

  12. Part of the webpresence was there anyway Preprocessing for CCWTR51 now there as well Cheaper than an upgrade of the current machine The process today The internet Application on a different platform TCP/IP CICS-itself Application COBOL-INIT Application

  13. More solutions: • Delayed answer (1 imm, then delayed) • No robots • Registration

  14. THE END • Questions ? • Original at pi-sysprog.de/gse • My E-mail: Martin@pi-sysprog.de

More Related