Presentation is loading. Please wait.

Presentation is loading. Please wait.

Information Technology at Emory Information Technology Division Technical Services IT Briefing Agenda 11/18/03 SecuRemote SPAM sqlnet.ora Update NetCom.

Published byJoleen Cook Modified over 8 years ago

Similar presentations

Presentation on theme: "Information Technology at Emory Information Technology Division Technical Services IT Briefing Agenda 11/18/03 SecuRemote SPAM sqlnet.ora Update NetCom."— Presentation transcript:

1 Information Technology at Emory Information Technology Division Technical Services IT Briefing Agenda 11/18/03 SecuRemote SPAM sqlnet.ora Update NetCom Q&A Quick Updates Jay Flanagan Ken Guyton Evan Ehrenhalt Paul Peterson Karen Jenkins

2 Information Technology at Emory Secure Remote / Admin Core Update Jay D. Flanagan Technical Services

3 Information Technology at Emory Information Technology Division Technical Services Secure Remote Restricted Firewall rules were put in place, Monday, Nov. 10, 2003 on the Admin Core Firewall. With the implementation of these rules, secure remote is now required for access to servers within the Admin Core. Currently, only PeopleSoft Application servers are in the Admin Core.

4 Information Technology at Emory Information Technology Division Technical Services Secure Remote No major problems with the secure remote / restricted firewall rules implementation. Firewall rules were tweaked as necessary as issues occurred. Continued monitoring of the firewall logs for issues is ongoing.

5 Information Technology at Emory Information Technology Division Technical Services Admin Core Admin Core routers implemented on Saturday, Nov. 15 th. Admin Core servers will now plug into the Admin Core routers. Admin Core now ready for other restricted / confidential services. Finance will be moving its services into the Admin Core over the next couple of months.

6 Information Technology at Emory Spam Filtering Ken Guyton Technical Services

7 Information Technology at Emory Information Technology Division Technical Services UNIX Group Theresa Goriczynski, Manager (of TS) Amanda Gagnon Bruce Anderson Chris Alexander Curt Tucker (Spam Filtering) Ken Guyton (Pointing at this slide)

8 Information Technology at Emory Information Technology Division Technical Services One Simple Rule We’ll answer questions at the end...Please

9 Information Technology at Emory Information Technology Division Technical Services What You Need to Know Marking @emory.edu now. Volunteer by turning Bulk filtering on at the web page Check the Bulk folder for email Email feedback to Theresa tgoricz@emory.edu

10 Information Technology at Emory Information Technology Division Technical Services Today’s Plan The problem Our solution: Two parts Architecture Demo and Q&A

11 Information Technology at Emory Information Technology Division Technical Services Simpler Times...

12 Information Technology at Emory Information Technology Division Technical Services Spam Is a Problem 37 states with anti-spam laws Some statistics say more than 50% of email is spam Some of you say more than [ really big number ]% of your email is spam!

13 Information Technology at Emory Information Technology Division Technical Services If You Speak It’s Name... Our solution: Spam Filtering

14 Information Technology at Emory Information Technology Division Technical Services Spam Filtering Vendor Trend Micro Spam Prevention Service (SPS) Purchased Postini You’ll see the character string “pstn”

15 Information Technology at Emory Information Technology Division Technical Services Spam Filtering There are Two Parts Part One: Marking

16 Information Technology at Emory Information Technology Division Technical Services Part One: Marking X- headers Minimal impact When was the last time you noticed X- headers in your email?

17 Information Technology at Emory Information Technology Division Technical Services Part One: Marking Return-Path: Received: from avscan1.cc.emory.edu (avscan1.cc.emory.edu [170.140.204.66]) by euphrosyne.cc.emory.edu (8.12.10/8.12.0) with ESMTP id hAEMLTOJ000325 for ; Fri, 14 Nov 2003 17:21:31 -0500 (EST) Received: from psmtp.com (localhost [127.0.0.1]) by avscan1.cc.emory.edu (8.12.10/8.12.10) with SMTP id hAEMLS2u022152 for ; Fri, 14 Nov 2003 17:21:28 -0500 (EST) Received: from source ([170.140.9.9]) by daphne ([170.140.204.221]) with SMTP; Fri, 14 Nov 2003 17:21:28 EST Received: from spinoza.public.hq.nasa.gov (spinoza.public.hq.nasa.gov [198.116.65.43]) by desdemona.cc.emory.edu (8.12.10/8.12.10) with ESMTP id hAEMLSus011172; Fri, 14 Nov 2003 17:21:28 -0500 (EST) Date: Fri, 14 Nov 2003 16:20:14 -0500 (EST) Message-Id: From: NASANews@hq.nasa.gov Subject: NASA PARTICIPATES IN AMERICAN ASTRONAUTICAL SOCIETY CONFERENCE Content-Type: text Sender: owner-press-release@spinoza.public.hq.nasa.gov To: undisclosed-recipients:; X-pstn-levels: (C:80.0762 M:99.5542 P:95.9108 R:95.9108 S: 1.7712 ) X-pstn-settings: 4 (1.5000:4.5000) pmCr X-pstn-addresses: from X-pstn-spam: Y

18 Information Technology at Emory Information Technology Division Technical Services Part One: Marking Return-Path: Received: from avscan1.cc.emory.edu (avscan1.cc.emory.edu [170.140.204.66]) by euphrosyne.cc.emory.edu (8.12.10/8.12.0) with ESMTP id hAEMLTOJ000325 for ; Fri, 14 Nov 2003 17:21:31 -0500 (EST) Received: from psmtp.com (localhost [127.0.0.1]) by avscan1.cc.emory.edu (8.12.10/8.12.10) with SMTP id hAEMLS2u022152 for ; Fri, 14 Nov 2003 17:21:28 -0500 (EST) Received: from source ([170.140.9.9]) by daphne ([170.140.204.221]) with SMTP; Fri, 14 Nov 2003 17:21:28 EST Received: from spinoza.public.hq.nasa.gov (spinoza.public.hq.nasa.gov [198.116.65.43]) by desdemona.cc.emory.edu (8.12.10/8.12.10) with ESMTP id hAEMLSus011172; Fri, 14 Nov 2003 17:21:28 -0500 (EST) Date: Fri, 14 Nov 2003 16:20:14 -0500 (EST) Message-Id: From: NASANews@hq.nasa.gov Subject: NASA PARTICIPATES IN AMERICAN ASTRONAUTICAL SOCIETY CONFERENCE Content-Type: text Sender: owner-press-release@spinoza.public.hq.nasa.gov To: undisclosed-recipients:; X-pstn-levels: (C:80.0762 M:99.5542 P:95.9108 R:95.9108 S: 1.7712 ) X-pstn-settings: 4 (1.5000:4.5000) pmCr X-pstn-addresses: from X-pstn-spam: Y

19 Information Technology at Emory Information Technology Division Technical Services Part One: Marking X-pstn-levels: (C:80.0762 M:99.5542 P:95.9108 R:95.9108 S: 1.7712 ) X-pstn-settings: 4 (1.5000:4.5000) pmCr X-pstn-addresses: from X-pstn-spam: Y

20 Information Technology at Emory Information Technology Division Technical Services Part One: Marking X-pstn-spam: Y

21 Information Technology at Emory Information Technology Division Technical Services Part One: Marking All of emory.edu Only emory.edu Production Monday 17 Nov 2003 Other domains later (Jan 2004) Email: tgoricz@emory.edu

22 Information Technology at Emory Information Technology Division Technical Services Part One: Marking So far we’ve just marked email If you didn’t look, you would never notice Next is Part Two...

23 Information Technology at Emory Information Technology Division Technical Services Part Two: Filter to Bulk Part Two: Filtering to a Bulk Folder for Eagle Mail

24 Information Technology at Emory Information Technology Division Technical Services Part Two: Filter to Bulk You can turn this on at the web page https://webmail.service.emory.edu/spamfilter/spamfilter.pl Enter your network id, password Turn Filtering to Bulk on or off

25 Information Technology at Emory Information Technology Division Technical Services Part Two: Filter to Bulk Stay tuned... Demo at end. By Theresa

26 Information Technology at Emory Information Technology Division Technical Services Part Two: Filter to Bulk If you turn this on You now have a new folder called Bulk Email marked as spam will go there Use your IMAP client or Webmail to look at it

27 Information Technology at Emory Information Technology Division Technical Services Part Two: Filter to Bulk Client software usually will have to subscribe. Webmail finds it okay This may be the number one problem?

28 Information Technology at Emory Information Technology Division Technical Services Part Two: Filter to Bulk We will periodically remove email from the Bulk folder A given message will be there for 30 days

29 Information Technology at Emory Information Technology Division Technical Services Part Two: Filter to Bulk Check the Bulk Folder!!!!! Some email you want might go there. Filtering rules can’t be perfect

30 Information Technology at Emory Information Technology Division Technical Services Part Two: Filter to Bulk You can Volunteer to test Bulk now 1.Turn on Bulk at the web page 2.Read the FAQ 3.Email feedback to Theresa tgoricz@emory.edu tgoricz@emory.edu Roll out to campus on 30 Nov

31 Information Technology at Emory Information Technology Division Technical Services Part Two: Filter to Bulk 1.FAQ 2.http://it.emory.edu/http://it.emory.edu/ 3.Search for documents: 2641, 2642, 2643

32 Information Technology at Emory Information Technology Division Technical Services Spam Filtering Two parts Part one: Marking Part two: Filter to Bulk

33 Information Technology at Emory Information Technology Division Technical Services Architecture = Load balancing Switches Other servers RelaySpam Filtering Virus Scanning Read/ Delivery non- emory.edu mail bypasses spam filtering firewall

34 Information Technology at Emory Information Technology Division Technical Services Our Solution One set of rules for enterprise Isn’t perfect Is just a tool Voluntary (Filtering to Bulk)

35 Information Technology at Emory Information Technology Division Technical Services Summary Marking emory.edu now. Volunteer by turning Bulk filtering on at the web page Check the Bulk folder or email Email feedback to Theresa tgoricz@emory.edu

36 Information Technology at Emory Information Technology Division Technical Services Demo and Questions This PowerPoint presentation is at http://webdrive.service.emory.edu /users /kguyton /Public /PowerPoint/

37 Information Technology at Emory SQLNET.ORA Evan Ehrenhalt Technical Services

38 Information Technology at Emory Information Technology Division Technical Services What will I tell you? Where to get the SQLNET.ORA TNSNAMES resolution, Name server resolution and the SQLNET.ORA ? TNSNAMES vs ONAMES Testing Oracle Connections GUI is the way to go

39 Information Technology at Emory Information Technology Division Technical Services Where to get it Contact the CSC Use the e-mail dated 10/24/2003 On the web page soon… Manual changes are not supported Easy sometimes hurts… Changing text is easy, but can break things.

40 Information Technology at Emory Information Technology Division Technical Services TNSNAMES Resolution TNSNAMES is the file which tells the Oracle client where the database is and how to talk to it. Given a database connection identifier (WEBD), find the machine (DNS or IP), describe the protocol (TCP or other), connect to the correct port (1521).

41 Information Technology at Emory Information Technology Division Technical Services ONAMES Resolution NAMES.DIRECTORY_PATH= (TNSNAMES, ONAMES)  Who resolves first??? oranamesrvr0.cc.emory.edu -- XX Machine meltdown XX oranamesrvr3.cc.emory.edu oranamesrvr1.cc.emory.edu oranamesrvr2.cc.emory.edu Given a list of name servers, find the first available server (oranamesrvr3), look up the database (WEBD), use the stored definition which is identical to a TNSNAMES entry. At this time, we resolve the name just like a TNSNAMES entry. Database connection resolution

42 Information Technology at Emory Information Technology Division Technical Services SQLNET.ORA contents Advanced Security instructions Encrypt packets to protect user data as it is sent across the net. Less important inside the firewall. Default Values Set up default zones and domains. Database connection resolution - ONAMES Define the name servers and allow their use for resolving database locations.

43 Information Technology at Emory Information Technology Division Technical Services TNSNAMES vs ONAMES TNSNAMES exists on each client machine. When a database or hardware change occurs, a new copy must be distributed. ONAMES can be changed from a central point. ONAMES is the supported method for Emory.

44 Information Technology at Emory Information Technology Division Technical Services TESTING CONNECTIONS 1 To test an Oracle connection try the following steps. 1.ping hostname (is it alive?) 2.tnsping the service name 3.sqlplus id/pw@service_name

45 Information Technology at Emory Information Technology Division Technical Services TESTING CONNECTIONS 2 C:\>ping mimas.cc.emory.edu Pinging mimas.cc.emory.edu [170.140.204.105] with 32 bytes of data: Reply from 170.140.204.105: bytes=32 time=11ms TTL=253 Reply from 170.140.204.105: bytes=32 time=15ms TTL=253 Ping statistics for 170.140.204.105: Packets: Sent = 4, Received = 4, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 11ms, Maximum = 20ms, Average = 15ms C:\>tnsping webd TNS Ping Utility for 32-bit Windows: Version 9.0.1.1.1 - Production on 17-NOV-20 Copyright (c) 1997 Oracle Corporation. All rights reserved. Used parameter files: C:\OraHome9\network\admin\sqlnet.ora Used ONAMES adapter to resolve the alias Attempting to contact (DESCRIPTION=(SOURCE_ROUTE=OFF)(ADDRESS_LIST=(ADDRESS=(PROTOCOL=TCP) (HOST=mimas.cc.emory.edu)(PORT=1521)))(CONNECT_DATA=(SID=WEBD)(SRVR=DEDICATED))) OK (10 msec) C:\> C:\>sqlplus scott/tiger@webd SQL*Plus: Release 9.0.1.0.1 - Production on Mon Nov 17 19:12:25 2003 (c) Copyright 2001 Oracle Corporation. All rights reserved. Connected to: Oracle8i Enterprise Edition Release 8.1.7.4.0 - Production JServer Release 8.1.7.4.0 - Production SQL> Sqlplus scott/tigger@webdscott/tigger@webd

46 Information Technology at Emory Information Technology Division Technical Services Errors SQLNET / NAMING ERRORS: ORA-12649: Unknown encryption or data integrity algorithm ORA-12154: TNS:could not resolve service name ORA-12560: TNS:protocol adapter error TNS-03505: Failed to resolve name ORA-12656: Cryptographic checksum mismatch ORA-12545: Connect failed because target host or object does not exist

47 Information Technology at Emory Information Technology Division Technical Services Errors APPLICATION ERRORS: Any error dealing with communications for Oracle should have an ORA or TNS prefix. An SP2 prefix may be generated from SqlPlus. Any error which does not start with a 3 character prefix, a dash, and a 5 digit number is not an oracle error. ORA-01400: cannot insert NULL into (“OWNER".“TABLE".“COLUMN")

48 Information Technology at Emory Information Technology Division Technical Services More Information Read our FAQ at ww.it.emory.eduww.it.emory.edu Go to Home :: Online Computing :: Internet Services :: Self-Service Database :: FAQHomeOnline ComputingInternet ServicesSelf-Service DatabaseFAQ Open a ticket with the help desk Call us directly

49 Information Technology at Emory Information Technology Division Technical Services

50 Information Technology at Emory Updates Karen Jenkins Technical Services

51 Information Technology at Emory Information Technology Division Technical Services Quick Updates ESR – Electronic Support Request –Phased rollout w/ both web form and email for transition to users –Adding authentication Managed Push –Defined and prioritized requirements –Selected products –Working on test plan Local Support Database for Call Center –Support team members and departments/customers Virus Tools –Tool for W2K now available at: –Working on combined tool

Download ppt "Information Technology at Emory Information Technology Division Technical Services IT Briefing Agenda 11/18/03 SecuRemote SPAM sqlnet.ora Update NetCom."

Similar presentations

Enabling Secure Internet Access with ISA Server

Enabling Secure Internet Access with ISA Server
Basic Communication on the Internet:

Basic Communication on the Internet:
Information Technology at Emory The Building Blocks for Security at Emory University Jay D. Flanagan Security Team Lead Technical Services Copyright Jay.

Information Technology at Emory The Building Blocks for Security at Emory University Jay D. Flanagan Security Team Lead Technical Services Copyright Jay.
Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.

Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.
11 TROUBLESHOOTING Chapter 12. Chapter 12: TROUBLESHOOTING2 OVERVIEW  Determine whether a network communications problem is related to TCP/IP.  Understand.

11 TROUBLESHOOTING Chapter 12. Chapter 12: TROUBLESHOOTING2 OVERVIEW  Determine whether a network communications problem is related to TCP/IP.  Understand.
Packet Analyzers, a Threat to Network Security. Agenda Introduction The background of packet analyzers LAN technologies & network protocols Communication.

Packet Analyzers, a Threat to Network Security. Agenda Introduction The background of packet analyzers LAN technologies & network protocols Communication.
Phishing (pronounced “fishing”) is the process of sending e-mail messages to lure Internet users into revealing personal information such as credit card.

Phishing (pronounced “fishing”) is the process of sending messages to lure Internet users into revealing personal information such as credit card.
Chapter 12 Network Security.

Chapter 12 Network Security.
Information Security 1 Information Security: Demo of Some Security Tools Jeffy Mwakalinga.

Information Security 1 Information Security: Demo of Some Security Tools Jeffy Mwakalinga.
CPSC 441 Tutorial - Network Tools 1 Network Tools CPSC 441 – Computer Communications Tutorial.

CPSC 441 Tutorial - Network Tools 1 Network Tools CPSC 441 – Computer Communications Tutorial.
Hands-On Microsoft Windows Server 2003 Networking Chapter 7 Windows Internet Naming Service.

Hands-On Microsoft Windows Server 2003 Networking Chapter 7 Windows Internet Naming Service.
Introduction to the Secure SMTP Server service. Secure SMTP server is a secure, reliable SMTP mail relay server for your outgoing mail. Secure SMTP service.

Introduction to the Secure SMTP Server service. Secure SMTP server is a secure, reliable SMTP mail relay server for your outgoing mail. Secure SMTP service.
Network Topology. Cisco 2921 Integrated Services Router Security Embedded hardware-accelerated VPN encryption Secure collaborative communications with.

Network Topology. Cisco 2921 Integrated Services Router Security Embedded hardware-accelerated VPN encryption Secure collaborative communications with.
» Explain the way that electronic mail (e-mail) works » Configure an e-mail client » Identify e-mail message components » Create and send e-mail messages.

» Explain the way that electronic mail ( ) works » Configure an client » Identify message components » Create and send messages.
Introduction 1-1 Chapter 2 FTP & Email Computer Networking: A Top Down Approach 6 th edition Jim Kurose, Keith Ross Addison-Wesley March 2012 IC322 Fall.

Introduction 1-1 Chapter 2 FTP & Computer Networking: A Top Down Approach 6 th edition Jim Kurose, Keith Ross Addison-Wesley March 2012 IC322 Fall.
IT:Network:Applications Fall 2009.  Running one “machine” inside another “machine”  OS in Virtual machines sees ◦ CPU(s) ◦ Memory ◦ Disk ◦ USB ◦ etc.

IT:Network:Applications Fall  Running one “machine” inside another “machine”  OS in Virtual machines sees ◦ CPU(s) ◦ Memory ◦ Disk ◦ USB ◦ etc.
Module 1: Reviewing the Suite of TCP/IP Protocols.

Module 1: Reviewing the Suite of TCP/IP Protocols.
Module 4 - Networking MIS5122: Enterprise Architecture for the IT Auditor.

Module 4 - Networking MIS5122: Enterprise Architecture for the IT Auditor.
Information Technology at Emory Information Technology Division Technical Services IT Briefing Agenda 7/15/04 PS Support Overview June Action Items TS.

Information Technology at Emory Information Technology Division Technical Services IT Briefing Agenda 7/15/04 PS Support Overview June Action Items TS.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Troubleshooting Your Network Networking for Home and Small Businesses.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Troubleshooting Your Network Networking for Home and Small Businesses.

Similar presentations

Ads by Google