Transcript MacのOSを更新
Technology Update
TSAG Meeting 11/13/03
Rollout of Portal and SOLAR
https://www.csun.edu/portal
(https://my.csun.edu)
Portal and SOLAR are part of the CMS project (Common
Management System)
New system with a whole set of new challenges: technical and nontechnical. (Patience is needed!)
Things to Note:
Registration Starts Monday
New Interface for students
Grading must be performed by faculty
~1000 faculty don’t have e-mail accounts
Servers are in Utah
(Standard) One week change-management cycle
Refrain from submitting DARS requests
Training for Faculty starts on Monday.
Packeteer
Network Engineering has deployed a packet
shaper called “packeteer”
We can prioritize different types of traffic
CMS traffic: high priority
Kazaa traffic: low priority
We need to get more information from the
local units on which network traffic should be
prioritized, etc.
End of Life: IPX and Appletalk
Original Announcement of Intent:
Proposed Last Date of support:
TSAG Meeting, Nov & Dec 2002
Friday June 4 2004 (Last day of academic year)
Reasons for the End of Life on Campus
To reduce load on and to simplify management of Network
Services
IPX is 20% of load for 5% of population
To reduce the load on NetWare/NDS® servers
Novell and Apple have adopted pure IP
Your tasks:
Migrate Novell/Apple services off of IPX/Appletalk
Need Netware 5 or above
Need Mac OS 8.1 or above
Provide early feedback on problems and concerns
Sources:
http://www.novell.com/info/collateral/docs/4621162.01/4621162.html
Email Quota being put into Effect!
Enforcement is underway for:
All new accounts
All student accounts (to be complete by Dec 15)
Faculty/Staff maximum email storage limits:
400 MB by Dec 1, 2003
300 MB by Feb 1, 2004
200 MB by March 1, 2004
100 MB by April 1, 2004
Plan to send individuals e-mails those above 400MB (22)
Yearly review of quotas by ATC is underway
SSL for All E-mail Protocols: Recap
Intent to require SSL for all e-mail protocols:
September ‘02: intent to require SSL announced
May ‘03: original date to require by Oct 1 (on campus)
Oct 15-22: phased-implement enforcement
Problems:
IMAPs and POPs enforcement (Oct 27)
Certificate problems
Eudora (and other clients)
Notification of Emeriti
Your thoughts?
SSL Next Steps
Block all inbound “telnet” and “ftp”
connections
Original Proposed Dates:
1/1/04
10/1/03 (for ECS)
Your tasks:
Provide feedback on an appropriate date
Update web pages and documentation
(e.g., campus search: telnet ecs)
Desktops Standards
Greg Nicols proposed a TSAG committee to develop
a set of Desktop Standards
Overwhelming number of volunteers
(This is a good thing!)
Committee might want to subdived into affinitiy
groups, e.g.,:
Administrative Desktops
Faculty Desktops
General Purpose Student Laboratory Desktops
Patch Management
First meeting is Nov 18th
POC: [email protected]
Patch Management
Stability of the Campus Infrastructure is
highly dependent on Desktop security
patches being applied timely.
Units are exploring Microsoft SUS as a
possible approach
ITR (Barry)
Library (Bruce)
COBAE (Kelly)
SBS (Tim)
ITR’s Approach to Patch Mgt.
Focus on just “critical” OS-level patches
Apply Non-Emergency patches weekly
Obtain updates from MS
Test for N days in specific machines
Authorize deployment at next cycle.
(Desktops will automatically pull updates.)
Apply Emergency patches as needed
Obtain updates from MS
Test for N days on specific machines
Push updates to desktops
Architectures for SUS
Single Enterprise-Level SUS
Hierarchal Enterprise-Level SUS
Individual Units may either
Join Hierarchal SUS server
Install Local SUS server
??