FTP Client Request Validation

Description: FTP Client Request Validation

This function is used whenever the System i5 is a client, issuing FTP commands to a remote system.

Where used:

System i5 command lines, interactive and batch jobs can initiate an FTP

 

client request

 

Server Identifier:

*FTPClient

 

Format Name:

VLRQ0100

 

Levels Supported:

Basic

(Level 1,2)

 

Intermediate

(Level 3)

 

Advanced

(Level 4)

Usage Notes/Limitations:

At Level 3 or Level 4 you can implement IP address controls. This will allow you to limit what target addresses/systems an FTP client can connect to. See commands:

CHGFTPSET IPCTLC(*YES) and WRKTCPIPA *FTPCLIENT

You can also review ‘Setting up TCP/IP Address Controls’ in Chapter 3 of this guide.

Recommended

 

Setting:

Level 4, Log All

Important Note:

When the FTP Client point is set to Level 4, only the GET and PUT FTP sub-commands are required. The other commands, when using the FTP Client, are for the TARGET SYSTEM ONLY (sent to/run on the target system).

When authorizing users to the GET/PUT sub-commands, the assumed object authority is reversed from authorities required for the FTP Server point and the same objects.

See the following examples.

SafeNet/400 Reference Guide

 

Copyright 2008 MP Associates of Westchester, Inc.

12.33

V8.50 - May 2008

 

Page 153
Image 153
IBM Safenet/400 manual Usage Notes/Limitations, Recommended Setting Level 4, Log All, 12.33