IT Updates Cellular Policy Update - Syndi Haywood The messenger is back - be nice to her for giveaways later. Update: increment changes to new cell phone policy allowance: allowances begin at $30 and are in $10 increments. If you choose the $30 level, it will be less than that in the monthly direct deposit you receive (taxes). Annual IT Mgrs Board vote - Mindy Tueller Need nominations for 3 Board member openings for 2 year terms - all outgoing Board members (Dan Hutten, John Desha, Craig Bennion) were re-nominated. An email msg will be sent to the list today asking for further nominations. Please respond w/in a week. Nominees will be contacted for their O.K. before being voted on. Vote via the web - sent out next Thursday (March 9th). Top 3 will be the new Board members; announced at April meeting. ISO Updates - Steve Scott Threats: OSX: Macs are no longer invulnerable. Finder issue, Safari issue - seeing active code to exploit these things. Tell users to get their virus stuff up-to-date. Department Recognition: Trevor Long and Laurie MacMillan of the College of Education found some scanning and reported it. Movie tickets! Tool of the month: Foundstone vulnerability scanner Foundstone external scan ran about a month ago - got good response. If you are interested, ISO will help you get HTML pages to review your results. On a dept by dept basis. ISO is working on an e-Commerce project now, but will do this when they have time. Scanned all of our address space (8500 hosts, 21,000 services available, 900 critical vulnerabilities) in less than 24 hours. You get a score based on how many services you have, if it's an outward-facing machine, how many services are critical, etc. Ranking - a 31 on an out-of-the box clean Mandrake system: bad. Very valuable information - ISO wants to share it with you. Can an internal scan be done, as well? Yes: "poke a hole" into firewall to see how it looks. Mechanism to determine when a scan is to be done (with IP address) - Steve will send out an email and give you a couple days. Can put in more in-depth information prior to the scan, too. With the Foundstone scanning engine we can add credentials (username/passwd) to do a more thorough test.
Multimedia Center, Marriott Library
Digital version copyright 2007, University of Utah. All rights reserved.
Multimedia Center, Marriott Library, University of Utah