Technical Coordinators Meeting Chris Bongaarts Steve Siirila February 9, 2005

Outages Performance issues on one server (ruby) Jan 18 Performance issues on one server (ruby) Jan 18 Awaiting SAN connectivity for two remaining servers Awaiting SAN connectivity for two remaining servers One should be put into production sometime this month One should be put into production sometime this month

Password Changes Longer Internet passwords Jan 11 Longer Internet passwords Jan 11 –Maximum length extended to 125 –A few clients limit to as few as 32 –Minimum remains 6 (for now) Passwords are checked with cracklib when changed Passwords are checked with cracklib when changed notifications being sent to users with weak passwords starting Feb 7 notifications being sent to users with weak passwords starting Feb 7

Password Changes New password change mechanism for Helpline and PLAs created Jan 18 New password change mechanism for Helpline and PLAs created Jan 18 –Server assigns new 6-8 character random password to user –User must change password within 24 hours (or it stops working)

Departmental MTA Registration MTAs and other devices which are using the relay.tc.umn.edu service must register MTAs and other devices which are using the relay.tc.umn.edu service must register –Send IP address and contact information to Includes the relay-by-IP service (currently ) Includes the relay-by-IP service (currently ) Unregistered MTAs will be denied access starting July 5 Unregistered MTAs will be denied access starting July 5

SMTP Server Update Received: headers no longer include (May be forged) comment when HELO name does not match DNS PTR Received: headers no longer include (May be forged) comment when HELO name does not match DNS PTR Now blocking sites in Spamhaus XBL (Exploit Block List) Now blocking sites in Spamhaus XBL (Exploit Block List)

Phase-out of clear-text passwords Next general mailings will be sent out on Feb 15, Feb 21, and Mar 1 Next general mailings will be sent out on Feb 15, Feb 21, and Mar 1 Mailing will be separated into Morris and Twin Cities variants Mailing will be separated into Morris and Twin Cities variants FTP mailing went out Jan 26 FTP mailing went out Jan 26

MMP Evaluation Evaluating next generation MTA product from our current vendor (BT) Evaluating next generation MTA product from our current vendor (BT) –Uses LDAP protocols instead of X.500 Includes a next generation directory Includes a next generation directory –High performance database –Multithreaded –LDAP based –Provides X.500 service module for backward compatibility

Lyris Feed from X.500 directory under construction Feed from X.500 directory under construction Has been used for several large mailings Has been used for several large mailings Contact U Relations for information Contact U Relations for information

Mailbox Archiving Discussion Why? Why? –Performance issues for end users –Performance issues for mailbox servers Who? Who? –Everyone? –Those with larger mailboxes only? What should the maximum age of messages be? What should the maximum age of messages be? Do we automatically delete archived mail? Do we automatically delete archived mail? What folder(s) do we place archived mail in? What folder(s) do we place archived mail in?

‘Till next month… Chris Bongaarts Chris Bongaarts Steve Siirila Steve Siirila