Information
Trouble Ticket
Windows
Macintosh
UNIX
Supercomputing
Remote Access
Software
Security
Storage
Site Map & Search
TSRI Home

TSRI Computer and Network Security

Some steps for improving computer security

  • General blocking of incoming Web and File Transfer to most TSRI computers.

    External access to the FTP and HTTP ports is permitted only to systems that require this type of access. Generally speaking, this will not be needed on most systems.

    This does not affect any transfers or accesses between computers on campus. Unaffected is outgoing web and file transfers.

  • No clear text logins to TSRI from the outside. SSH only.

    Remote access via telnet and POP displays your password and login name in clear text which can be eavesdropped and then used to gain unauthorized access to TSRI.

    Clear text passwords from remote machines are not permitted at TSRI. This affects logins from the outside using such programs as 'telnet' and e-mail access using a program that uses the 'POP' protocol (Eudora, Netscape, Thunderbird). Remote UNIX shell access must use the "Secure Shell" (SSH) protocol. Click for basic information on installing SSH.

  • No clear text POP: e-mail restrictions & port forwarding.

    Note: This restriction only applies to services coming across the internet. It does NOT apply to PPP or VPN accounts, nor to access from within Scripps. E-mail programs that use POP with clear-text passwords and logins are restricted. One approach is to use your e-mail program with the port forwarding feature of SSH to secure your network traffic. This will impact people who use POP for email with programs such as Eudora, Netscape, Thunderbird, and Outlook Express. Eudora users have a simpler option which is to use APOP. While SSH port forwarding will encrypt the entire mail message(s), APOP only encrypts the password. For most people this is sufficient security. Most people will find APOP easier to configure than SSH port forwarding.

  • Report suspicious activities

    IT Services needs your assistance with computer security. Please report suspicious activity.

  • Unix computers: Consider limiting access and/or the services that are run on them.

    Do you really need to log on to your Unix computer from every other computer on campus, or around the world? Most of us do not. IT Services can help you choose the level of restriction you want, to facilitate ease of use between trusted computers, and put up barriers from other computers. Various Unix services can be useful, or they may be potential hopping off points for hackers.


    Contacting Us

    • Need to report a suspected security incident? CALL x4-9369. *DO NOT SEND EMAIL*
    • Questions regarding security? Send email to security@scripps.edu.


     

Copyright © 2004 TSRI.