Security risk

New posts

Please be aware that ADSM.ORG will be going through forum software conversion and migration over the next several weeks. The cut-over date and time will be posted in the ADSM.ORG News & Announcements section as we near the target date. Please visit the following link for more details ADSM News & Announcements
Safeguarding Your Business: Expert Data Privacy Impact Assessments for Compliance Confidence.

Community Tip: Forum Rules (PLEASE CLICK HERE TO READ BEFORE POSTING)
Click the link above to access ADSM.ORG Acceptable Use Policy and forum rules which should be observed when using this website. Violators may be banned from this website. This notice will disappear after you have made at least 3 posts.

Home

Forums

TSM - IBM Tivoli Storage Manager

TSM Operation

Administrative Client

You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.

Security risk

Thread starter emsi

Start date May 9, 2006

emsi

ADSM.ORG Member

Joined

Apr 24, 2006

Messages

7

Reaction score

0

Points

0

Website

Visit site

May 9, 2006

#1

Hi!

I found that, by default, user of Privilege Classes Client Owner is able to connect to server with dsmadmc and perform a 'query content' operation and thus list objcts/file of other nodes. In certain circumstances this might lead to a serious implication and usualy can be considered as information leak.

IMHO the default behavior is unsecure. Commands as 'query sys' might unveil other sensitive informations about the server system as well.

You must log in or register to reply here.

Share:
Facebook X (Twitter) Reddit Pinterest Tumblr WhatsApp Email Share Link

Data Privacy Impact Assessment

Compliance Assurance in Every Byte: Discover the Impact of Our DPIA Services.

Sponsor ADSM.ORG

If you are reading this, so are your potential customer. Advertise at ADSM.ORG right now.

Navigation Menu

Forums
   IBM TSM
   EMC Backup and Recovery
Symantec NetBackup
   SAN
   NAS
   Platforms / OS
Mailing List Archives

   ADSM-L

   EMC NetWorker

   Symantec NetBackup

Links and Downloads
User Groups

NordVPN 3 Months FREE

Help Support ADSM.ORG and Get NordVPN with 64% Off and 3 Months FREE.

Forum statistics

Threads

31,982

Messages

135,471

Members

21,953

Latest member

smeegama

Home

Forums

TSM - IBM Tivoli Storage Manager

TSM Operation

Administrative Client

Back

Top