Technology Update TSAG Meeting 2/13/03. Announcements: Self-Service Account Utility Available Disaster Recovery Test:  (2/18-19)

Slides:

Advertisements

Similar presentations

Security Update Server Registration, Active scanning and Windows patching.

Advertisements

Darton College Information Systems Use Policies. Introduction Dartons Information Systems are critical resources. The Information Systems Use Policies.

The Office of Information Technology Network Access Control (NAC) Anthony Espinoza Information Security Officer UTSA Office of Information Security.

SCCC Technology & Information Systems. Technology Support Academic Academic –Campus Educational Technology Units (ETUs) –Teaching & Learning Centers –Distance.

Technology Update TSAG Meeting 8/8/02. Announcements: Account Cleanup  Number of Accounts: 41,338  Number of Faculty/Staff:~ 3,000  Number of Students:~30,000(~

Disaster Recovery Planning Because It’s Time! Copyright Columbia University and Bentley College, This work is the intellectual property of the author.

Module 3 Windows Server 2008 Branch Office Scenario.

Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.

Technology Update TSAG Meeting 9/12/02. Announcements: Mandatory Password Changes Coming in October! (Postponed) End of BootP (November 1) DNS Cleanup.

Technology Update TSAG Meeting 6/13/02. Announcements: DNS Naming and Cleanup (coming!)  imap: , mail, mail1, mailsrv1  telnet, csun1: csun2, hp9k2,

July 12, 2005 CSU SIMI Workshop - Melding Policy and Technology to Manage Identity1 Provisioning Services Collaborative CSU, East Bay and CSU, San Bernardino.

Technology Update TSAG Meeting 3/13/03. Announcements: Disaster Recovery Test:[Bill]  (2/18-19) Networking Infrastructure: DNS, DHCP, Authentication.

Technology Update TSAG Meeting 11/14/02. Announcements: Spam Open Forum  Monday November 18, 2pm-3pm  OV Presentation Room Campus Operations Center:

Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.

Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.

Update and Discussions on Technology Initiatives TSAG Meeting 4/11/02.

Technology Update TSAG Meeting 10/10/02. Announcements: DNS Cleanup Send periodic ICMP ping probes to all DNS entries (8/26- 9/13) Correlate data obtained.

TSAG Meeting 3/14/02 Update on Current Technology Initiatives.

Technology Update TSAG Meeting 7/11/02. Announcements: DNS Naming and Cleanup (coming!)  imap: , mail, mail1, mailsrv1  telnet, csun1: csun2, hp9k2,

Introduction to the Secure SMTP Server service. Secure SMTP server is a secure, reliable SMTP mail relay server for your outgoing mail. Secure SMTP service.

Fermilab VPN Service What is a VPN ?.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.

TCRS Concord Project Employer Training. Agenda 2 Topic Objectives Why Are You Here? Project Overview What’s New Your Resources Questions Demonstration.

Identity Lifecycle Management Jonny Chambers Senior Technical Specialist Microsoft Ireland

User Services. Services Desktop Support Technical Support Help Desk User Services Customer Relationship Management.

May 30 th – 31 st, 2006 Sheraton Ottawa. Microsoft Certificate Lifecycle Manager Saleem Kanji Technology Solutions Professional - Windows Server Microsoft.

CougarNet Dennis Fouty, Ph.D. Associate Vice Chancellor, University of Houston System Associate Vice President, University of Houston Mary Dickerson, MCSE.

Update to TIMGroup January Outline Introduction Where are we now? Where are we going? What can be done to prepare? What are the options?

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.1 ISP Responsibility Working at a Small-to-Medium Business or ISP – Chapter 8.

Information Technology at Emory Information Technology Division Technical Services IT Briefing Agenda 7/15/04 PS Support Overview June Action Items TS.

Windows 2000 Windows 2000 Project Team Division of Information Technology Mary Dickerson, MCSE, Project Leader University of Houston Windows 2000 University.

IT Update Faculty Senate September 1, 2004 University of Houston Information Technology.

Brown University Exchange 2003 Molly Baird Manager, Windows-Novell Services.

Site License Advisory Team March 31, 2014 meeting.

University of Missouri-Rolla Computing and Information Services 1 Meg Brady Asst. Director, Client Services Presented to New Faculty Forum,

MIGRATING FROM MICROSOFT EXCHANGE SERVER AND OTHER MAIL SYSTEMS Appendix B.

 Academic   Administrative ◦ Departments  Desktop Services  Networking & Telecommunications  Computer Center ◦ Office of Computer and Information.

DECS Community IT DIVISION OF ENGINEERING COMPUTING SERVICES Michigan State University College of Engineering.

Montcalm Area Intermediate School District Tom Staten – Billy Willis – October 13, 2011 MAEDS Session 8D.

ITS NCID Next Generation (NG) Project Overview February 24, 2010.

MyFloridaMarketPlace Roundtable January 21, :00 a.m. – 12:00 p.m. MyFloridaMarketPlace.

Technology Update TSAG Meeting 4/8/04. Announcements IPX and Appletalk being phased out Friday June (Last day of academic year)

1 CHAPTER 3 CLASSES OF ATTACK. 2 Denial of Service (DoS) Takes place when availability to resource is intentionally blocked or degraded Takes place when.

Windows 2000 Division of Information Technology Windows 2000 Project Team Mary Dickerson, MCSE, Project Leader University of Houston Windows 2000 University.

SPH Information Security Update September 10, 2010.

Information Technology at Emory Information Technology Division Technical Services IT Briefing Agenda 7/17/05 New scanning tools EOL/eVax & BTS Oracle.

Information Technology Practical information for new faculty about information technology at Missouri S&T it.mst.edu Christopher Dew Director, IT Operations.

Closing SFSU border firewall Prepared by E.Rayz DoIT Network Services Coordinator February 14, 2012.

1. 2 Overview In Exchange security is managed by assigning permissions in Active Directory Exchange objects are secured with DACL and ACEs Permissions.

TSAG Meeting 1/09/02 Update on Current Technology Initiatives Steven Fitzgerald.

March 15, 19991Matt Bishop Recommendations for One- Time Instructional Technology Funds Usage Instructional Technology Infrastructure Subcommittee, Academic.

Technology Update TSAG Meeting 7/8/04. Announcements New Interim Director of User Support Services: Bill Hardy Outage on July 17 Udrive status Anyone.

Technology Update TSAG Meeting 12/12/02. Announcements: Campus Operations Center: Holiday Hours  Christmas: 12/22-1/1 8am-5pm Coverage  On Call Coverage:

Technology Update TSAG Meeting 6/10/04. Old Voic System New Voic System installed on May 17 Remaining Issues:  Migrating calling trees  Some.

Rob Davidson, Partner Technology Specialist Microsoft Management Servers: Using management to stay secure.

2006 Infrastructure Projects Four Themes: Storage – room to grow Security – reacting to threats Virtual Systems – increased efficiency Service Management.

Writing Security Alerts tbird Last modified 2/25/2016 8:55 PM.

Funding Solution Task Force Recommendation #26 Robin Sawh LAN Supervisor, University Hall

GroupWise  Exchange Migration March, Reason for the change  The GroupWise system has been with WSD over 9 years  It has been a great system.

Technology and User Support Breakout Session SVRS Conference for Wisconsin County Clerks May 4, 2005 – May 5, 2005.

ALPA Information Technology Conference November 16-18, 2005.

L’Oreal USA RSA Access Manager and Federated Identity Manager Kick-Off Meeting March 21 st, 2011.

◦ Services to Employees  Managed Desktop Computer  Phone, Network, Internet & Wireless Access  & Portal Services  Android and Apple Phone App.

Information Technology Services (ITS)

Technology Update TSAG Meeting 12/11/03.

Working at a Small-to-Medium Business or ISP – Chapter 8

Technology Update TSAG Meeting 5/11/04.

Technology Resources Welcome to Texas State!.

Designing IIS Security (IIS – Internet Information Service)

Division of Engineering Computing Services

Presentation transcript:

Technology Update TSAG Meeting 2/13/03

Announcements: Self-Service Account Utility Available Disaster Recovery Test:  (2/18-19) Networking Infrastructure: DNS, DHCP, Authentication (Radius & Directory)  (3/?) Infrastructure: SIMSR Security Enhancement ( 2/18 ) VPN required for off-campus desktops Directory Authentication for Peoplesoft HR/FN (1/13 => 2/19 )  Campus UID, Address, or Peoplesoft Operator ID  Password resets handled by University Helpdesk and PS Helpdesk SMTP Authentication ( 3/1 ) Disk ( and Data) Quotas ( 4/15 ) Voice/IP Change Over ( 1/18-20 => 3/29-31) Mainframe Shutdown (6/30)

Agenda CATS Conference (Gail Johnson) Voice/IP Update (Greg Nicols) TII Update (Bonnie Davis) Mainframe Status (Don Foster) Microsoft Licensing Changes (Kurt Webb) IDS (Greg Duhon [Out Sick]) Discussion on Slammer and Securing the Campus (Staff) Presentation by Epson vendor (Charles Barnston)

911 Server Call Accounting

911 Server Call Accounting

TII Update (Stage 2) Stage 2: replacement of network electronics Project/schedule negotiated between CO and SBC Currently, all work is to be performed between 6:00am and 6:00pm Little wiggle room exists in the schedule Schedule Overview:  Core is complete  Building start: March 2002 (Sequoia, Sierra, Manz., ArtDesign)  Building stop: Dec 2002 Local meetings will be held ~1 month before start of deployment

Mainframe Status Approximately, 50% of the applications have been migrated off.  2000 user accounts daily users  134 remaining apps16 appear active All apps must be removed by June 30 Local units are responsible to identify and to migrated their applications off More info is needed:  A meeting can be arranged to work out details  Contact point: Don (x 5215)

Microsoft Licensing Changes New contract CSU-wide contract (effective 1/1/03) Information on the processes, etc., is still being ferreted out Four separate processes and licensing categories:  On Campus installations: should be performed via TSAG members or ITR/TES via a TSR  Home installations or the WAH (Work At Home) provision: software purchased via “ASAP”  Students: software purchased at Bookstore  Server Software: obtained via CSU ITAC members (for our campus it’s the CIO) Stay tuned for Keys, CDs, and more information

Cyber Attack: SQL Slammer Primary Application Affected: MS SQL Server Three Vulnerabilities:  Buffer overruns (stack and heap), and  DoS (keep alive packet exchange) Server Resolution Service (port1434/UDP) (Port 1433/TCP is the default server port) Affected Campus Servers: 6 (1+5) Local Resource Costs:  Loss of Services Campus Network [~3 days] Functionality of several servers  Time of Campus IT Staff

Discussion on Slammer (I) Could we (the Campus) have avoided this attack from affecting on-campus systems or services? Could we have minimized the affects of this attack on the Campus? Could we have eliminated CSUN's participation in the attack? Could we have recovered more quickly from this attack?

Discussion on Slammer (II) What controls/standards should have been in place prior to the attack? What are the precursory steps that should have been taken in preparation for the attack? What immediate steps should we taken to react to an attack?

Desktop/OS/Application Standards Why Standards?  To reduce the complexity of the system  To ensure the Campus community uses the appropriate technology to support the work of the students, faculty, and staff via a secure, reliable method.  To educate the faculty and administration on the rational of the standards and gain support  To develop transition plans (locally and campus-wide) to adopt new and phase-out old technology TSAG’s task/role?  Develop and recommend standards and best practices  One size will not fit all!  How does TSAG want to self-organize its structure

Next Round of ACLs Block all outbound “Well Known Ports” ( )  except:ftp(20,21[989,990]), ssh(22), telnet(23,[992]),http(80[443]) Block all inbound to subnets  except for registered Internet Servers  affected areas: Sierra Tower, Jerome Richfield DMJM Trailers, Student Services Bldg University Student UnionSagebrush Hall H-ComplexBank Building PE, Athletics, Bldgs T, S, & O Oviatt LibraryScience Buildings Retain blocks on 1433 and 1434 We routinely block attacking Class C networks