Presentation is loading. Please wait.

Presentation is loading. Please wait.

Important to inform users as to the importance of strong passwords. Important to inform users that web access means potential access from anywhere – can’t.

Published byAdeline Esser Modified over 9 years ago

Similar presentations

Presentation on theme: "Important to inform users as to the importance of strong passwords. Important to inform users that web access means potential access from anywhere – can’t."— Presentation transcript:

1 Important to inform users as to the importance of strong passwords. Important to inform users that web access means potential access from anywhere – can’t see the students doing it! Diligence in signing out, caution about being on public computers, acknowledge using student computers could mean keyboard logging … On some tablets/Ipad if you are inclass projection.. As you type your password it could be showing each password letter then hiding it. ** turn that setting off HECK do not limit this to just passwords … it is all about privacy of information period – class lists, student profiles, …. Do not print and post without appreciating the impact. What district policies do you have in place “share”

2 Iseries Security – we are SOLID with access to data files *Public Exclude to all XXXFILES libraries – only a few (less than 10 eg: T4’s for payroll) objects that have private authorities described.. Unique to the iseries we grant temporary access when executing programs. Only passwords of super users will get you anywhere! xxxTRANS libraries (user downloads like EIS.530 download report) – Key objects are cleared nightly to reduce risk of someone grabbing information ** We clear ours out … but now that information is on your PC, your USB, …. OR.. Safe on the network?

3 IFS Directory - Some exposure for *public /cimssms *WX Objexist,Objmgt … investigate and test on your own system with a normal *user SHARES are necessary for LIMITED number of people (all to just image /cimssms /cimsems /cimsfms … CAREFUL: Ensure not anonymous on iseries AND set share/map drive to the CIMS prescribed IDS cimsacp, cimsems … so particular users are not owning objects

4 Audit logs in STU.190, PAY.190, GNL.190 – Excellent RESOURCE for important items that have changed – audit will track the CIMS USERID and the EC Employee number/name as per access from the Connects Audit on all image views, changes, and adds – IMG.301E, IMG.301, IMG.301F (report cards, T4’s, Employee Applicant information …)

5 GOAL: Server has nothing important on it … as of the latest release – the only thing left on the server is student and employee pictures. Html tags written into the software to not invite site to be indexed Robots.txt file recommendation to reduce chance of indexing Delete.bat file to triple check no outlying pdf’s around ** Change to the way PDF’s are generated – When any other key is selected, the pdf is deleted automatically to reduce PDF’s sitting on the server at all. What are you doing on your webservers to reduce security exposure – IIS Setup and webserver definitions? User-agent: * Disallow: /

6 Reviewed IIS Logging. IIS does log activity – all access to pages from what IP and how many times, how many error outs etc … CAN help to know what pages are being hit and when/if timeouts and errors are occurring New audit for all Connect Logins: Each time anybody signs into any connect in ACSFILES/PACSWEB we are logging Userid Successful password attempt IP address coming from Browser, Operating System information PRODUCTIPDATETIMEBrowserUserExtrasPassword AC 192.168.0.5520140227115432 Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Geckokim0N AC 206.45.12 1.1620140227115544 Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Geckodonna0Y AC 192.168.0.2220140227141104 Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko donna semem1191Y TC 206.45.12 1.1620140227141221 Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Geckosemem0Y EC 192.168.0.2220140227154428 Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0;.NET CLR 2.0.50727;.NET CLR 1.1.432ca11911191Y Netscape, Mozilla Open Source

7 Districts can control what screen messaging appears when there is a timeout or error to an.aspx page …… we present errormessage.pdf Districts can control what screen messaging appears when the iseries is not available …. We present nosignon.pdf

8 REMINDER: EmployeeConnect Force password change to EC (EIS.331) – we can set a default value (currently I think only Portage is using)! TeacherConnect … Option to enforce password change policy for those districts not automatically loading this password each day. Pull student and staff pictures from the webserver.. Worried about speed if we have to go to the iseries for all the pictures Additional connect logging (same work as at login). Log each page movement of each user – you would know who hit what page everyday, every minute. THOUGHTS? Do we have to get crazy and think about asking for additional passwords in teacherconnect to update marks?

Download ppt "Important to inform users as to the importance of strong passwords. Important to inform users that web access means potential access from anywhere – can’t."

Similar presentations

B: STUDENT DRIVE MOVE INSTRUCTIONS. Using Internet Explorer: From your computers desktop, double click on the Internet Explorer icon. (Internet Explorer.

B: STUDENT DRIVE MOVE INSTRUCTIONS. Using Internet Explorer: From your computers desktop, double click on the Internet Explorer icon. (Internet Explorer.
How to Use Stowe School District

How to Use Stowe School District
For Developmental Services Financial Group (DSFG)

For Developmental Services Financial Group (DSFG)
Getting Started with Microsoft Office 365. Getting Started - Overview How to use your existing desktop software to connect to Office 365. Install the.

Getting Started with Microsoft Office 365. Getting Started - Overview How to use your existing desktop software to connect to Office 365. Install the.
1 Unit & District Tools Phase 1. 2 To access the new Unit and District Tools, you will need to click on the link embedded in the MyScouting Flash page.

1 Unit & District Tools Phase 1. 2 To access the new Unit and District Tools, you will need to click on the link embedded in the MyScouting Flash page.
Spyder Re-flash 2.0 How-To

Spyder Re-flash 2.0 How-To
DAP-1520 FAQ’s Wireless AC750 Dual Band Range Extender.

DAP-1520 FAQ’s Wireless AC750 Dual Band Range Extender.
1 Configuring Internet- related services (April 22, 2015) © Abdou Illia, Spring 2015.

1 Configuring Internet- related services (April 22, 2015) © Abdou Illia, Spring 2015.
Use of this software acknowledges the acceptance of the Terms of Service licensed to Ma Foi Consulting Solutions Ltd. All rights reserved.Terms of Service.

Use of this software acknowledges the acceptance of the Terms of Service licensed to Ma Foi Consulting Solutions Ltd. All rights reserved.Terms of Service.
1 Configuring Web services (Week 15, Monday 4/17/2006) © Abdou Illia, Spring 2006.

1 Configuring Web services (Week 15, Monday 4/17/2006) © Abdou Illia, Spring 2006.
Email Extras Plus! Pepper. Objectives E-mail extra knowledge Cookies Picture handling when creating site.

Extras Plus! Pepper. Objectives extra knowledge Cookies Picture handling when creating site.
Logging into ITAMS as an Exempt Employee To Login to ITAMS for the first time: Open your web browser. Click File, Open, and type the following address:

Logging into ITAMS as an Exempt Employee To Login to ITAMS for the first time: Open your web browser. Click File, Open, and type the following address:
Lesson 5-Accessing Networks. Overview Introduction to Windows XP Professional. Introduction to Novell Client. Introduction to Red Hat Linux workstation.

Lesson 5-Accessing Networks. Overview Introduction to Windows XP Professional. Introduction to Novell Client. Introduction to Red Hat Linux workstation.
DVG-N5402SP.

DVG-N5402SP.
Downloading and Installing AutoCAD Architecture 2015 This is a 4 step process 1.Register with the Autodesk Student Community 2.Downloading the software.

Downloading and Installing AutoCAD Architecture 2015 This is a 4 step process 1.Register with the Autodesk Student Community 2.Downloading the software.
CPSC 203 Introduction to Computers Lab 21, 22 by Jie (Jeff) Gao Location: ES650.

CPSC 203 Introduction to Computers Lab 21, 22 by Jie (Jeff) Gao Location: ES650.
Welcome to Networking! 1. Connect your computer to the network with a cable 2. Copy the Networking folder from the flash drive to the computer or your.

Welcome to Networking! 1. Connect your computer to the network with a cable 2. Copy the Networking folder from the flash drive to the computer or your.
Event Viewer Was of getting to event viewer Go to –Start –Control Panel, –Administrative Tools –Event Viewer Go to –Start.

Event Viewer Was of getting to event viewer Go to –Start –Control Panel, –Administrative Tools –Event Viewer Go to –Start.
If a user is unable to save a query when choosing the Excel with Headers file type (e.g., FMIS times out and exits while waiting for the query to save),

If a user is unable to save a query when choosing the Excel with Headers file type (e.g., FMIS times out and exits while waiting for the query to save),
Silent Dismissal Administrator Quick Start Guide.

Silent Dismissal Administrator Quick Start Guide.

Similar presentations

Ads by Google