SCADA

From: Gaziel, Avishay (agaziel@kpmg.com)
Date: Sun Jul 07 2002 - 10:03:02 EDT


Has anyone had any experience with SCADA systems?

Gaziel Avishay,
Information Risk Management
KPMG Somech-Chaikin
972-3-6848606

-----Original Message-----
From: Cold Fire [mailto:coldfire@shady.org]
Sent: Friday, July 05, 2002 2:48 AM
To: Rainer Duffner
Cc: pen-test@securityfocus.com
Subject: Re: Default passwords for TSO and CICS ?

On Thu, Jul 04, 2002 at 09:03:58PM +0000, Rainer Duffner wrote:

<snip>
>
> I must admit that I don't no either of the above OSs - I have limited
> experience with zVM/CMS (-> ipl Linux S/390), but some of the usual
default
> accounts I tried didn't work.
> Does anybody know some TSO default accounts, if any ?
> Or CICS ?

Nice to see something interesting on this list, these arn't defaults,
but you might have some luck.

CF

Common VM/CMS Accounts:

                 Username Password
                 -------- --------
                 $aloc$
                 admin operator, manager, adm, sysadmin, sysadm
                 alertvm alert
                 ap2svp
                 apl2pp
                 autolog1 autolog
                 autolog2 autolog
                 batch
                 batch1 batch
                 batch2 batch
                 botinstl
                 ccc
                 cms
                 cmsbatch cms, batch, batch1
                 cmsuser cms, user
                 cpms
                 cpnuc
                 cprm
                 cspuser user, csp
                 cview
                 datamove
                 demo1 demo
                 demo2 demo
                 direct
                 dirmaint dirmaint1
                 diskcnt
                 entty
                 erep
                 formplus
                 fsfadmin fsf, adm, sysadmin, sysadm, admin, fsfadm
                 fsftask1
                 fsftask2
                 gcs
                 gcsrecon
                 idms
                 idmsse
                 iips
                 infm-mgr infm, man, manager, mgr
                 inoutmgr mgr, manager
                 ipfappl
                 ipfserv
                 ispvm
                 ivpm1
                 ivpm2
                 maildel
                 mailman
                 maint service
                 moeserv
                 netview network, view, net, monitor
                 oltsep
                 op1
                 opbackup backup
                 operatns op, operator, manager, admin
                 operator op, operatns, manager, admin
                 opserver
                 pdm470
                 pdmremi
                 peng
                 presdbm dbm
                 procal
                 prodbm prod
                 promail
                 psfmaint maint
                 pssnews news
                 pvm
                 router
                 rscs
                 rscsv2
                 savsys
                 sfcm1 sfcm
                 sfcntrl
                 sim3278
                 smart
                 sna
                 sqldba database
                 sqluser user, sql
                 syncrony
                 sysadmin admin, adm, sysadm, manager, operator
                 sysckp
                 sysdump1 sysdump
                 syserr
                 syswrm
                 tdisk disk, temp
                 temp
                 tsafvm
                 vastest test
                 vm3812
                 vmarch
                 vmasmon
                 vmassys
                 vmbackup backup
                 vmbsysad
                 vmmap map
                 vmtape tape
                 vmtest test, testuser
                 vmtlibr
                 vmutil util, utils
                 vseipo
                 vsemaint maint
                 vseman
                 vsm
                 vtam
                 vtamuser user, vtam
                 x400x25

-- 
'Cold Fire, Britains most notorious hacker' Observer, July 1996
'The most recent conviction was that of [Cold Fire] whose On-line
escapades spanned from hacking into educational sites to more
sinister activities such as tapping into industrial and United
States military sites.' DC Paul Cox, SO6 Scotland Yard CCU
----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/
*****************************************************************************
The information in this email is confidential and may be legally privileged.
It is intended solely for the addressee. Access to this email by anyone else
is unauthorized. 
If you are not the intended recipient, any disclosure, copying, distribution
or any action taken or omitted to be taken in reliance on it, is prohibited
and may be unlawful. When addressed to our clients any opinions or advice
contained in this email are subject to the terms and conditions expressed in
the governing KPMG client engagement letter.         
*****************************************************************************
----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/


This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:23 EDT