The Integrated File System (IFS) is critical to the iSeries' ability to operate in a heterogeneous network. IFS lets the iSeries serve as an archival store for ASCII files, which PC users can retrieve and manipulate using the traditional Windows file system. It also serves as a repository for Web-hosted files and applications, such as those written in Java, JavaScript, and PHP. But to be palatable to these uses, the IFS must eschew the strong capability-based security architecture of i5/OS and descend to the lowest common denominator file system — one based on the much weaker, but simpler, Unix security model.

And therein lurks a monster. Since the IFS exists on every iSeries, it makes a perfect chink in the armor for hackers to gain a foothold into your system. Thanks to its Unix heritage, IFS inherits many of the Unix security vulnerabilities that hackers already know, love, and routinely exploit. To avoid becoming hacker chum in the Internet ocean, you must understand the IFS security architecture, learn how to manipulate its security features, and establish some basic auditing functions to help you catch intrusion attempts.

Along the way you'll pick up a few handy IFS management tips, and discover some of the power IFS gives your applications — which is what makes putting up with IFS security blemishes worthwhile. To start, compare the IFS security architecture with that of i5/OS.

Free registration is required to download the PDF of this Essential Guide. Click here to go to the registration page.