Andy, et al.,

Thanks guys.  I'd seen the original alert, but about an hour ago one of
our Sr. Directors made a general broadcast about the gaping security
hole in TSM.  I was looking for something with lots of details that
could keep him quiet for the rest of the afternoon.  But your report of
"no known exploits" has managed to quiet the storm.

Fred Johanson
TSM Administrator
University of Chicago

773-702-8464


-----Original Message-----
From: ADSM: Dist Stor Manager [mailto:ADSM-L AT VM.MARIST DOT EDU] On Behalf Of
Andrew Raibeck
Sent: Tuesday, September 25, 2007 12:49 PM
To: ADSM-L AT VM.MARIST DOT EDU
Subject: [ADSM-L] TSM security flash

Two TSM client security vulnerabilities have been discovered and
reported
to us. Note that there are no known exploits. Please see

http://www.ibm.com/support/docview.wss?uid=swg21268775

for details, including information on the fixing code.

Or you can click on the link to the TSM support page in my sig, and
you'll
see the flash notice at the top of that page.

Best regards,

Andy

Andy Raibeck
IBM Software Group
Tivoli Storage Manager Client Product Development
Level 3 Team Lead
Internal Notes e-mail: Andrew Raibeck/Tucson/IBM@IBMUS
Internet e-mail: storman AT us.ibm DOT com

IBM Tivoli Storage Manager support web page:
http://www.ibm.com/software/sysmgmt/products/support/IBMTivoliStorageMan
ager.html

The only dumb question is the one that goes unasked.
The command line is your friend.
"Good enough" is the enemy of excellence.