I have restarting one of the Department of Biology’s Domain Controllers this morning at 7am on Friday, the 6th of November. This restart was necessary to apply a few security patches. Chloroform is one of two domain controllers within the Department. Fluoroform is the other domain controller and was not restarted during this maintenance. Domain controllers allow for the department to authenticate against the University’s Active Directory (eID). Chloroform also hosts the departmental workstation backup server. Please let me know if you have any trouble authenticating to Biology related resources with your CSU eID. Thank you for your cooperation!
Chloroform Restart 11/6/2009 7:00 AM
Friday, November 6th, 2009, 8:16 am MT - posted by Ross Madden
Posted in General BioIT, Security, Windows | No Comments »
Facebook Phishing Attempts
Friday, October 30th, 2009, 10:43 am MT - posted by Ross Madden
I just received this friendly reminder from ACNS regarding some new Facebook Phishing attempts that are circulating. Please be sure to treat all strange e-mails with a dash of skeptisism and follow up on their link to “Dirty Dozen Clues To Avoid Phishing Attempts”.
“Now that we’re all back at work with driveways cleared of snow, it’s time to realize that the weather didn’t stop the spammers and phishers. While I try not to fill your inboxes with warnings about every single phishing attempt, this one is widespread enough that I thought it warranted a note.
Facebook is experiencing a fairly large-scale password-reset exploit. Spammers are sending out notices for people to reset their password, or notifying people that their password has already been changed and is attached as a document. CSU has seen some of the second version, encouraging the user to open the password attachment.
Please take this opportunity to remind your users of good email self-policing behavior:
1) Be suspicious of all attachments, even from people you know
2) Never reply to an email asking for your username and password
3) Never open an attachment that claims to contain your passwordFor more tips, see my “Dirty Dozen Clues to Avoid Phishing Attempts”… http://www.acns.colostate.edu/?page=security_dozen“
Posted in Security | No Comments »
Symantec 11.0.5 for Windows
Tuesday, October 27th, 2009, 10:00 am MT - posted by Ross Madden
ACNS has just made available the new version of Symantec Endpoint Protection. This version not only solves the various firewall issues we were experiencing but also works properly with Windows 7. As I reported earlier, Windows 7 was popping up an annoying driver compatibility warning (http://rydberg.biology.colostate.edu/sites/bioit/2009/09/18/symantec-sep-windows-7-issue/).
If you are suffering from the 11.0.4 SEP installation that has disabled your Windows Firewall you must do one of the following when upgrading to SEP 11.0.5:
- - Manual Intervention – upgrade to SEP 11.0.5 by downloading the installer from the link below and running it. Then turning on your WIndows Firewall from within the Control Panel manually.
- - Manually Uninstall SEP 11.0.4 first, then download and install SEP 11.0.5
SEP 11.0.5 can now be downbloaded at the following URL: http://www.acns.colostate.edu/?page=downloads_sls_free
Sorry to all the Snow Leopard users – it still looks like January 2010 for version 10.3 to be released.
Posted in Apple, Security, Windows | No Comments »
Symantec SEP Windows 7 Issue
Friday, September 18th, 2009, 8:03 am MT - posted by Ross Madden
While is seems that almost everything related to the current release (as of the time of this posting) is working properly (scanning, updating etc), I am getting the Driver Compatibility popup show below. There are other accounts of this information on the Internet and apparently this is known to Symantec. They are working to solve it, hopefully by the officially release date next month.
Posted in Security, Windows | 1 Comment »
Phishing Identification Guidelines
Friday, May 15th, 2009, 9:02 am MT - posted by Ross Madden
Dear All,
ACNS has put together the following list of tell-tale phishing attempt giveaways that you should all be familiar with. I get a lot of inquiries regarding whether something is a phishing message or not – and usually just the suspicion is enough – however, here are some nice rules to live by for the next time you check your inbox:
http://www.acns.colostate.edu/?page=security_dozen
Posted in Security | No Comments »
Typical Phishing
Monday, April 20th, 2009, 9:00 am MT - posted by Ross Madden
I just got this e-mail from Stephen Lovaas (ACNS) who found this great example of a phishing e-mail. He has labeled the lines that should jump out and scream “phishing” when reviewing questionable e-mail (those that contain [PHISHING]). Please check this out, and use this knowledge the next time you get a strange message.
—–Original Message—–
[PHISHING] From: System Administrator [mailto:rawalel@mnstate.edu]
Sent: Sunday, April 19, 2009 2:13 AM
Subject: Mailbox Has exceeded Storage Limit
[PHISHING] Dear Webmail User,
This message was sent automatically by a program on Webmail which periodically checks the size of inboxes, where new messages are received.
Your mailbox has exceeded the storage limit set by your administrator. You may not be able to send or receive new mail until your mailbox size is increased by your system administrator.
[PHISHING] To help us re-set your SPACE on our database prior to maintain your INBOX, you must contact your system administrator by replying this e-mail and enter your:
[PHISHING] Current Username: { } and PW: { } to increase your storage limit.
You will continue to receive this warning message periodically if your inbox
[PHISHING] size continues to exceed its size limit or between 18 and 20 MB.
Thank you for your cooperation.
[PHISHING] System Administrator
This email is intended only for the use of the individual or entity to which it is addressed and contains information that is privileged and confidential.
Posted in Security | No Comments »
