Security Level 40
For System i, IBM has stated that any value of QSECURITY less than 40 is not secure. Out of the 197 systems reviewed, 32% are at system security level 30 or less. IBM recommends that this setting should be at level 40 or higher because there are several well-known exposures at security level 30.
The Clear Technologies services team will:
Enable the Security Audit Journal on your System i if it is not already active.
Analyze the Security Audit Journal to determine if applications are compatible with security level 40.
Deliver a report that lists any application programs that have integrity exposures that would fail at security level 40.
Offer assistance if there are applications that are identified to have integrity exposures.
Change the QSECURITY system value to level 40 and restart (IPL) the System i.
Provide support after the security is increased to security level 40.
Be available to assist with any issues that are found as a result of changing to security level 40.
Obtain additional integrity protection without affecting system performance.
Plug level 10, 20, and 30 security holes.