It’s been a busy week here at PowerTech, with the release of a powerful new security module. PowerTech Command Security is a fantastic tool in the battle against unauthorized activities by powerful users. Traditionally, authorized users are able to enter commands on system command lines, while others may even be able to run commands through unmonitored interfaces such as FTP and DDM without having command line permissions. Either way, commands typically are not policed any further. This means that a system operator could accidentally power down a production system in the middle of the day, or a programmer could delete a production file instead of the intended copy in a test library.

Command Security integrates tightly with the IBM operating system to provide additional control over command execution. You can monitor commands selectively (perhaps start with the PWRDWNSYS and CHGSYSVAL commands), including both IBM and non-IBM commands. You then are able to specify flexible conditions including time periods, user names, and even the presence of the profile on an authorization list. Actions can be initiated when these conditions are met. Available actions include overriding command parameters, sending notification of an invocation, and even preventing the command from executing.

For more information on PowerTech Command Security, mark your calendars for August 17 at 10 a.m. CT when I’ll be unveiling its functionality in a free Webinar. Look for registration information coming soon.

In “local” news, the recent Minnesota State government shutdown had the state’s CISO concerned that his IT security talent wasn’t going to want to sit around in employment limbo, especially when working in one of the most in-demand industries. Fortunately, it seems that the two-week shutdown is almost over as the two sides have finally reached a budget compromise, so hopefully his concerns were unrealized.

My photograph this week is of an exquisitely restored 1953 Pontiac Chieftain. I love to take these kinds of images for people as it’s a real challenge to try to do justice to the blood, sweat, and tears that go into their painstaking restoration and gleaming care. Most of these classics were born long before me, and I think it’ll be interesting to see if the cars of today receive the same cult following as some of these powerful behemoths of yesterday. While there are some beautiful automobiles on the road today, I have a feeling that we won’t ever hear cries of “Wow! Check out this beautiful ’06 Geo Prism!” Only time will tell.

For more information on PowerTech, or any of our robust and proven security solutions, please contact me at robin.tatam@powertech.com.

Cheers,

- rt

I hope everyone had a fantastic Fourth of July weekend, and enjoyed spending time with friends and family. I always love the fireworks of course, but it’s also a sign to me that summer is finally here to stay!

Although LulzSec, the anti-security organization, might have called it quits recently, a quick check of the “chronology of data breaches” page of the Privacy Rights Clearinghouse (www.privacyrights.org) website shows that things aren’t slowing down. While hacks of the big-name corporations may steal the headlines, they also have a tendency to not be relatable to smaller businesses on Main Street, USA; the “We’re not Sony” syndrome! But, according to privacyrights.org, the list of June breaches wrapped up with the Nashville Zoo website, and even Conor O’Neills Irish Pub in Ann Arbor Michigan—literally found on Main Street.

While I can’t say whether or not Conor runs his quaint little pub on an IBM i server, there are plenty of small- and medium-sized businesses that do. And many of these are still entirely unprotected from unauthorized activity, be it an intruder or the more likely “insider.” Fortunately, PowerTech can help with a complete portfolio of security solutions that scale from the smallest uni-partition systems up the latest powerhouse models. We even offer a popular free assessment service to help companies of every shape and size (and budget) identify their vulnerabilities.

In light of this, it might surprise you to know that the biggest recommendation I can make professionally is not about software. It’s not even about compliance. It’s about acknowledging risk, and then taking some type of action to manage it. Sure, it’s probably going to cost some money, but in the long-term, it’s usually a lot less than you’ll spend cleaning up a spill.

My photo this week is of Minneapolis’ beautiful Stone Arch Bridge, a historical landmark built across the Mississippi in 1883. The bridge provided a rail link until 1978, and then reopened as a footbridge in 1994. It’s one of the most recognized landmarks in Minneapolis, and I am proud to finally have local representation in my gallery.

Lastly, I want to send my best wishes to IBM i security legend John Earl, a good friend and a mentor in this business. John is starting down the road to recovery after discovering last week that he was suffering from a brain tumor. In the short time it took to post this blog entry, John has already undergone brain surgery, left the ICU, and is now home getting stronger (and back to himself) daily. My prayers are with him and his family for a speedy and full recovery in the coming months. If you would like to track John’s remarkable progress or send him an encouraging note, you can visit his CaringBridge website.

For more information on PowerTech, or on any of our protection and detection security solutions, please contact me at robin.tatam@powertech.com.

Cheers,

- rt