Joe Adamo (Computing and IT Center), Philip Baczewski (DCSMT Chair, Director of Academic Computing, Computing and IT Center), John Berra for Scott Jackson (UNT Libraries), Sandy Burke (Computing and IT Center), Tim Christian (College of Arts and Sciences), Wil Clark (UNT System Center @ Dallas), Paul Hons (College of Education), Abraham John (VP Student Development), Matt Kernan for Scott Joyce (Housing), Don McClure for Chris Strauss (Computing and IT Center), Dallas Newell (Enrollment Management), Chris Stoermer for Mike Hatch (College of Business Administration)
Allen Bradley (Computing and IT Center), Bruce Berg (Division of Student Affairs), Justin Cuombs (Computing and IT Center), Howard Draper (Computing and IT Center), Cathy Gonzalez (Computing and IT Center), Elizabeth Hinkle-Turner (Computing and IT Center), Krysta Kaye (Libraries), Claudia Lynch (Computing and IT Center), Tom McElwee (Computing and IT Center), Bahram Paiani (Computing and IT Center), Charlotte Russell (Computing and IT Center), Richard Sanzone (Computing and IT Center), Marcus Wenzel (Libraries), David Wood (Computing and IT Center), Yancey Yeargan (Computing and IT Center)
APPROVAL OF MINUTES
Minutes from July 15, 2005 were approved with minor correction.
SQL Security and Brute-Force Attacks
Howard Draper reported on SQL brute-force attacks. UNT usually sees between 20,000 and 100,000 attempts per day, with a big spike of attempts on weekends. In the previous seven days there were 1,989,918 attempts. If the machines being attacked are using static passwords, success is almost guaranteed. The pattern is the same machines are being targeted over and over, with successful attacks via SQL BF. The Security team recommends the following: Strong passwords changed as frequently as possible. Assess sensitivity of data. Try to shield from public network with hardware firewall. If on Windows, configure IP Security. Encrypt data. Apply patches as soon as possible.
Client Application Interaction with EIS
Cathy Gonzalez distributed a chart detailing EIS related client applications as of August 2005. These clients include App Designer that is primarily a developer tool for building and maintaining EIS applications. The license administrator is the CC Application Infrastructure Management group. Another client is AppWorx that is a process scheduler being administered by Phillip Brooks and Brian Richman. The third client in the list is Cypress, a report distribution to the UNTS community package also administered by Philip Brooks and Michael Heredia, with documentation residing on http://www.unt.edu/helpdesk (select Faculty/Staff), and http://www.unt.edu/eis/WebHelp/Cypress.htm . The fourth client is First Logic that provides address cleansing facilities as well as solutions pertaining to duplicate person record identification and consolidation. Robert Jones administers this software. The fifth client is Golden that provides SQL front-end to Oracle, administered also by Robert Jones and is CITC only. Quick Test Professional is the sixth client and is for load balance testing, administered by Robert Jones. Ultra-Edit is the seventh client for programmers as a test/source code editor. It also is administered by Robert Jones. The package mentioned that is not on the list is Crystal Reports for those creating reports using RDS drivers. There is an EIS install product that will enable it to be used in EIS reporting.
Cathy also shared the latest organization chart for the Administrative Information Systems group, now directed by John Hooper since the retirement of Coy Hoggard. The organization chart displayed the new teams including Payroll/HR Systems, Fiscal Systems Team, Student/Contribution Services, EIS Infrastructure Services, EIS Tools and User Services, EIS Training/Communications/Administration.
Data Encryption - The July Benchmarks (http://www.unt.edu/benchmarks) included an article recommending software to use to run Encryption software on data stored on personal computers, including laptops, both personal and university owned, if saving data that has personal identification information, like the Social Security Number. Maurice Leatherbury sent out a message to the network managers list discussing data protection on sites collecting data. If there are web applications collecting data, please be aware of data collected, where stored, and that protection is in place for the data. Maurice is also going to send encryption standards on August 22 when all the faculty and staff return to campus for the fall semester.
AREA STATUS REPORTS
Bahram Paiani is going to begin testing of spam filter firewalls in next few weeks. He would like volunteers to test these products once he has it set up to test the products. He also announced that the website, http://ncs.unt.edu show active numbers on the battle against spam and viruses.
Tom McElwee announced to the group that Austin Laird has taken a job in the private sector. He was the manager of the WebCT software administration.
Yancey Yeargan let the group know the new AUTH directory is online and is the preferred directory to use for login purposes.
Allen Bradley reported that any GW issues go to Yoke Teo in the Messages group during vacations of Jason Myre and Jason Gutierrez.
The meeting was adjourned at 10:45am. The next
meeting will be August 19, 2005.
Return to Distributed Computing Support Management Team Home Page.
Page last modified on September 02, 2005. Send comments to Philip Baczewski