Fermilab Computer Security

Fermilab Computer Security http://security.fnal.gov Whats New from the FNAL Computer Security Team en-us jklemenc@fnal.gov webmaster.gov Fermilab Computer Security Team http://security.fnal.gov/computersecurity.gif http://security.fnal.gov The Fermilab Computer Security Team administers the laboratory's computer security program and provides the Fermilab community with technical expertise and up-to-date information and resources for improving computer security. October 24, 2006: Updated the krb5.conf template file to match the Kits version (V1.16) restoring the PILOT.FNAL.GOV realm definitions. http://security.fnal.gov/krb5.conf Updated the krb5.conf template file to match the Kits version (V1.16) restoring the PILOT.FNAL.GOV realm definitions. October 23, 2006: Critical Vulnerability in OpenPBS/Torque http://computing.fnal.gov/CriticalVuln/openpbs-10-23-2006.html Critical Vulnerability in OpenPBS/Torque September 13, 2006: Added topage on current SSH problems, the information on the test release of OpenSSH for Scientific Linux Fermi and information on how to get these updates and install them. http://computing.fnal.gov../cookbook/SSHonMacOSX.html Added topage on current SSH problems, the information on the test release of OpenSSH for Scientific Linux Fermi and information on how to get these updates and install them. September 07, 2006: Nessquik available for production use. Please send all comments, questions, bug reports and feature requests to CST. https://shamus.fnal.gov/nessquik Nessquik available for production use. Please send all comments, questions, bug reports and feature requests to CST. August 31, 2006: New How-To Guide on Trusting Certificates and downloading the CA Certificates added. http://computing.fnal.gov../cookbook/TrustingCertificates.html New How-To Guide on Trusting Certificates and downloading the CA Certificates added. August 28, 2006: Added a page on current SSH problems with Mac OS X and Scientific Linux. http://computing.fnal.gov../cookbook/SSHonMacOSX.html Added a page on current SSH problems with Mac OS X and Scientific Linux. August 09, 2006: Critical Vulnerability: MS06-040 - MS Server Service http://security.fnal.gov/CriticalVuln/ms06-040.html Critical Vulnerability: MS06-040 - MS Server Service July 20, 2006: Updated roaster's SSL certificate. You will need to remove your old KCA trusted authority, and install the new authority if you havent already done so (see this link), or else you will be prompted to accept and trust the certificate offered everytime you start up your browser. https://security.fnal.gov/pki/Get-KCA-Cert.html#cacertinstall Updated roaster's SSL certificate. You will need to remove your old KCA trusted authority, and install the new authority if you havent already done so (see this link), or else you will be prompted to accept and trust the certificate offered everytime you start up your browser. July 20, 2006: Sysadmin Roundtable: Oracle Mitigations video is now available for those who missed it http://vmsstreamer1.fnal.gov/VMS_Site_03/Lectures/ComputerSecurityAwareness/060607Trumbo/index.htm Sysadmin Roundtable: Oracle Mitigations video is now available for those who missed it July 20, 2006: Sysadmin Roundtable: Oracle Demonstration video is now available for those who missed it http://vmsstreamer1.fnal.gov/VMS_Site_03/Lectures/ComputerSecurityAwareness/060607Klemencic/vf001.htm Sysadmin Roundtable: Oracle Demonstration video is now available for those who missed it July 18, 2006: Prototype version of get-cert for Mac OSX that supports inserting certificates into Firefox is available. Please report any issues. Download it here get-cert-proto.tar.gz http://security.fnal.gov/tools/get-cert-proto.tar.gz Prototype version of get-cert for Mac OSX that supports inserting certificates into Firefox is available. Please report any issues. Download it here get-cert-proto.tar.gz July 17, 2006: Security page modified to remove mouse over drop list in sidemenu. Please report display or navigation errors to us so we can fix them. http://computing.fnal.gov, 2006: Security page modified to remove mouse over drop list in sidemenu. Please report display or navigation errors to us so we can Security page modified to remove mouse over drop list in sidemenu. Please report display or navigation errors to us so we can fix them. April 24,2006: Perform a ScanMeNow from outside the FNAL border http://security.fnal.gov/scanmenow.html Perform a ScanMeNow from outside the FNAL border