It has come to our attention through one of our customers that there is a phishing scam that appears to be coming from Skyward. Skyward would not send you a link and ask that you log into it. The email address this came from is skywardhelp@cyberservices.com [mailto:skywardhelp@cyberservices.com]. This is not a valid email address for Skyward. Please instruct your users to ignore any type of request like this.
We appreciate your prompt attention to this matter. If you have any questions, please contact Skyward Customer Service.
Thank You - Skyward Support Staff
SN #1474
Friday, May 28, 2010
Skyward phishing scam
We just received this from Skyward. Please be aware.
Do you have your new password ready?
Do you have your fifteen character password ready?
This is a reminder that starting July 15, all staff must have a long password. New passwords must be at least fifteen characters long and contain at least one number and symbol.
The good news? Your password will not expire, so you won't ever have to change it unless it gets cracked.
If you are wondering why, or need help creating a password that long that you can also remember, please read "How to choose a good password" on our documentation site.
On July 15, we will switch our servers from Novell to Microsoft. This means your current Novell password will no longer work, and you will have to start using a new one. Because we cannot see or export your current passwords, we will assign you a new one that you must start using on July 15.
Before the end of school, you will receive a piece of paper which will contain your new password. On July 15, you will need to start using this new password. You may want to change it to something you can remember more easily, but you must use the password issued to you at least once to log in and change your password.
If you have questions, please feel free to contact me or read the detailed explanation at http://sites.google.com/a/oregonsd.net/technology-integration-tool/Home/passwords (staff login required).
This is a reminder that starting July 15, all staff must have a long password. New passwords must be at least fifteen characters long and contain at least one number and symbol.
The good news? Your password will not expire, so you won't ever have to change it unless it gets cracked.
If you are wondering why, or need help creating a password that long that you can also remember, please read "How to choose a good password" on our documentation site.
On July 15, we will switch our servers from Novell to Microsoft. This means your current Novell password will no longer work, and you will have to start using a new one. Because we cannot see or export your current passwords, we will assign you a new one that you must start using on July 15.
Before the end of school, you will receive a piece of paper which will contain your new password. On July 15, you will need to start using this new password. You may want to change it to something you can remember more easily, but you must use the password issued to you at least once to log in and change your password.
If you have questions, please feel free to contact me or read the detailed explanation at http://sites.google.com/a/oregonsd.net/technology-integration-tool/Home/passwords (staff login required).
Thursday, April 29, 2010
Bogus email
A number of people have received the following message:
Our content filter identifies the linked site as a virus site. If you clicked on the link, please submit a helpdesk ticket so we can check your computer for virus infections.
------Original Message------This is false message and is not from us. You can tell this is a fake easily because the originating email address is not from the district, and the URL it asks you to click is not from the district.
From: Webmail Administrator
To: undisclosed-recipients:;
Subject: Webmail Upgrade
Sent: Apr 29, 2010 2:50 AM
Dear Email User,
We are upgrading our Email system to enable us reduce the occurrence of spam .
You are to clink on the Link below to Upgrade your Email.
[link has been removed so we don't infect anybody]
Signed,
Webmaster Administration
Our content filter identifies the linked site as a virus site. If you clicked on the link, please submit a helpdesk ticket so we can check your computer for virus infections.
Wednesday, April 28, 2010
Unplanned Internet outage now resolved
A brief Internet outage has been resolved. Here is the notification from WiscNet.
The routing process on the ISP router in Madison was restarted to
restore connectivity. Network Engineers have opened a case with
the vendor to investigate the cause of the outage.
Network: WiscNetMaria Accuardi @ 2010-04-28 10:35:56
Type: Unplanned Outage
Location: WiscNet
Ticket Number: 107176
Party:
Start Time: 4/28/2010 9:40 CDT
End Time: Unknown
Description: Widespread Outage
Engineers:
Reporters:
Affected:
WiscNet Members
Notices:
Maria Accuardi @ 2010-04-28 09:59:31
There is a widespread outage for WiscNet members at this time.
Network Engineers are currently working to resolve the issue.
Maria Accuardi @ 4/28/2010 9:59 CDT
The routing process on the ISP router in Madison was restarted to
restore connectivity. Network Engineers have opened a case with
the vendor to investigate the cause of the outage.
Wednesday, April 21, 2010
Proposed new password policies for next year
New password policies for next year
I am proposing two big changes to the district's password policy. The two big changes are: 1) Passwords will never automatically expire; and 2) Passwords will have to be fifteen characters long and have some complexity. These go hand-in-hand. If the passwords are long and complex, they probably won't be cracked, so they won't ever need to be changed.
Why will they never expire?
Research on IT best practices shows that the more frequently passwords are changed, the simpler they become. We also know that changing a password regularly doesn't necessarily stop bad things from happening- it simply blocks out an intruder who happens to get your password. Also, we know it's annoying when passwords expire.
Why will they have to be fifteen characters long?
Again, IT best practices show that long, complex passwords are more secure. There are many reasons for this, but there are two I'm focusing on.
First, there is a very easy password cracking tool that students use (yes, even Oregon students have used this) which can crack any Windows password with a length of fourteen characters or less. Adding the fifteenth character might not seem like much, but the exponential increase in complexity, combined with the way that Windows hashes passwords makes this a huge difference. The second reason for complex passwords is that if a student happens to see or hear a password, it should be something that's difficult to remember. For example if you write down your password (in your wallet or some other place where people won't see it) and a student catches a glimpse, they could remember "BrianJoeErica1990" more easily than "mfdwmfswam3m0ri@lu"
How can we remember all that gibberish?!?
The secret is that it's not really gibberish. The password above, "mfdwmfswaM3m0ri@lU" only looks like gibberish. In fact, it's based on a phrase that has significant personal meaning: "My first date with my future spouse was at Memorial Union." (I just made this up, it's not true, but if it were, it would be memorable. Choose your own phrase.)
See how I got the password? I took the first letter of each word, then the entire word "Memorial" but substituted a "3" for the "e", a zero for the "o", and an "@" for the "a". The resulting password has lots of complexity- it includes capital and lowercase letters, numbers, and symbols. And after a while, your fingers will just get used to typing it. Remember- you won't have to change it every month.
Related resources:
I am proposing two big changes to the district's password policy. The two big changes are: 1) Passwords will never automatically expire; and 2) Passwords will have to be fifteen characters long and have some complexity. These go hand-in-hand. If the passwords are long and complex, they probably won't be cracked, so they won't ever need to be changed.
Why will they never expire?
Research on IT best practices shows that the more frequently passwords are changed, the simpler they become. We also know that changing a password regularly doesn't necessarily stop bad things from happening- it simply blocks out an intruder who happens to get your password. Also, we know it's annoying when passwords expire.
Why will they have to be fifteen characters long?
Again, IT best practices show that long, complex passwords are more secure. There are many reasons for this, but there are two I'm focusing on.
First, there is a very easy password cracking tool that students use (yes, even Oregon students have used this) which can crack any Windows password with a length of fourteen characters or less. Adding the fifteenth character might not seem like much, but the exponential increase in complexity, combined with the way that Windows hashes passwords makes this a huge difference. The second reason for complex passwords is that if a student happens to see or hear a password, it should be something that's difficult to remember. For example if you write down your password (in your wallet or some other place where people won't see it) and a student catches a glimpse, they could remember "BrianJoeErica1990" more easily than "mfdwmfswam3m0ri@lu"
How can we remember all that gibberish?!?
The secret is that it's not really gibberish. The password above, "mfdwmfswaM3m0ri@lU" only looks like gibberish. In fact, it's based on a phrase that has significant personal meaning: "My first date with my future spouse was at Memorial Union." (I just made this up, it's not true, but if it were, it would be memorable. Choose your own phrase.)
See how I got the password? I took the first letter of each word, then the entire word "Memorial" but substituted a "3" for the "e", a zero for the "o", and an "@" for the "a". The resulting password has lots of complexity- it includes capital and lowercase letters, numbers, and symbols. And after a while, your fingers will just get used to typing it. Remember- you won't have to change it every month.
Related resources:
Thursday, April 15, 2010
Tuesday, April 13, 2010
ROME server reboot
The server unmounted its volumes at about 1:15pm today, April 13th 2010. I rebooted it, and it was back up and running by 1:25pm
Subscribe to:
Posts (Atom)