Template:News-current
(→May 13, 2008) |
(→May 13, 2008) |
||
| Line 2: | Line 2: | ||
Due to a recently discovered vulnerability in OpenSSL, all UGCS host keys will be changing shortly. We will post a GPG-signed list of the new keys when we are done. It is a good idea to download this list and add it to your ~/.ssh/known_hosts file to prevent man-in-the-middle attacks. | Due to a recently discovered vulnerability in OpenSSL, all UGCS host keys will be changing shortly. We will post a GPG-signed list of the new keys when we are done. It is a good idea to download this list and add it to your ~/.ssh/known_hosts file to prevent man-in-the-middle attacks. | ||
| − | '''Update''': Host keys for our login machines. A GPG-signed list of the fingerprints is available at http://www.ugcs.caltech.edu/ssh-host-keys | + | '''Update''': Host keys for our login machines have been changed. A GPG-signed list of the key fingerprints is available at http://www.ugcs.caltech.edu/ssh-host-keys |
===May 13, 2008=== | ===May 13, 2008=== | ||
Revision as of 20:10, 13 May 2008
Contents |
May 13, 2008
Due to a recently discovered vulnerability in OpenSSL, all UGCS host keys will be changing shortly. We will post a GPG-signed list of the new keys when we are done. It is a good idea to download this list and add it to your ~/.ssh/known_hosts file to prevent man-in-the-middle attacks.
Update: Host keys for our login machines have been changed. A GPG-signed list of the key fingerprints is available at http://www.ugcs.caltech.edu/ssh-host-keys
May 13, 2008
Several UGCS, alumni, and IMSS users have been reporting increased phly phishing attempts (IE, trying to get you to send them your username and password and claiming to be the admins). Just a reminder that the UGCS sysadmins will never ask you for a password. If we want to confirm your identity we may send you a long string of letters and numbers and then ask you to send it back.
If you're more paranoid, all official email from sysadmins will be signed by that sender's GPG public key. If we forget, ask for a resent signed version before taking any action. You can find the UGCS Sysadmin key as well as our individual keys at the CA page.
May 11, 2008
The Mortals sub-cluster has been added. Enjoy!
March 18, 2008
We have blocked all Kerberos traffic that does not come from UGCS to help mitigate a recent Kerberos vulnerability.
Update We have patched the vulnerability and non-UGCS Kerberos has been unblocked. Jdhutchin@ugcs.caltech.edu 13:14, 18 March 2008 (PDT)
March 6, 2008
Due to unexplained issues with hera (our main LDAP server), we're routing all LDAP requests through to zeus (the Kerberos head and LDAP backup). As a result, things may be slower and less reliable. We are investigating the issue and hope to have it fixed soon.
March 2, 2008
Like Linux? Want to help make UGCS a better place? Think you've got what it takes to be a UGCS sysadmin? Well, then you're in luck. UGCS is conducting its annual sysadmin search. If you're interested, please take our Sysadmin Survey and submit it by the end of spring break (March 30).
February 21, 2008
In order to complete an upgrade to our mail server, mail services will be down for about an hour beginning around midnight.
Update Mail delivery is back up Jdhutchin@ugcs.caltech.edu 01:22, 22 February 2008 (PST)
February 13, 2008
We have automated the mailing list creation process. To create a mailing list, login to UGCS, and run the command create_mailinglist <LISTNAME>. Your list will be created within the minute. If you should run into any problems email me. alexr@ugcs.caltech.edu 18:15, 13 February 2008 (PST)
