190 likes | 442 Views
E-mail Technical Coordinators Meeting Chris Bongaarts Steve Siirila January 11, 2006 Service Outages Wed Jan 4 22:00-22:30 (30min), Sun Jan 8 18:50-19:30 (40min) Authenticated SMTP (smtp.umn.edu) Mail Delays Related to move of directory server Tue Jan 10 13:15-15:20 (2hr 5min)
E N D
E-mail Technical Coordinators Meeting Chris Bongaarts Steve Siirila January 11, 2006
Service Outages • Wed Jan 4 22:00-22:30 (30min), Sun Jan 8 18:50-19:30 (40min) • Authenticated SMTP (smtp.umn.edu) • Mail Delays • Related to move of directory server • Tue Jan 10 13:15-15:20 (2hr 5min) • Premium Interactive (garnet) • Personal Web Services (www.tc.umn.edu) • Due to SAN problem
Equipment Moves • Equipment moved from CHRC to St. Paul • Directory server • Incoming mail server (MX) • Outgoing mail server (GW, relay) • IMAP/POP server (sapphire) • X.500/Kerberos authentication servers • Other internal servers • Two more e-mail servers (diamond, ruby) to move over next couple weeks • New site on DataCenter network • Redundant paths to campus network • Shared VLAN between sites
GopherMail • New Webmail client based on University of Cambridge “Prayer” • Integrated with: • Central Authentication Hub (CAH) • UMN Spam Reporting • UMN LDAP Directory Services • No reliance on an external web server or PHP infrastructure • Utilizes IMAP and holds open up to 5 connections much like desktop clients
GopherMail Features • Ultra fast response time • Saving of draft messages • Forwarding of attachments • Downloading of entire mailboxes (UNIX format) • Search on sender, subject, date, size, text • Spell checker • Threading option • Import/export of address books • Populate address books via directory search
User-maintained White/Blacklist • New user-managed blocking controls coming in January • Up to 25 blocked e-mail addresses and/or e-mail address domains • Ability to add arbitrary e-mail addresses and/or e-mail address domains to current whitelist • Block reason USR will be used
Complex Blocking Example • Block all hotmail.com except those specifically whitelisted: • Blacklist: hotmail.com • Whitelist: gooduser@hotmail.com
Phase-out of clear-text passwords • 215 users remain insecure • All but 10 warned they will be “securified” next week • Last 10 will get “personal assistance” • Conversion of TC premium (garnet) accounts is complete • Final target: unauthenticated SMTP gateway now
Top 10 Unauthenticated SMTP gateway IPs (Jan 2-9) • mail.nursing.umn.edu (-) • fever.cidrap.umn.edu (-) • mollusk.ndis.umn.edu (NEW) • ahcweb05.ahc.umn.edu (-1) • omaweb.stu.umn.edu (+4) • x94-230-136.lib.umn.edu (NEW) • wwws3.csom.umn.edu (-3) • ucs.micro.umn.edu (-3) • x94-51-192.ej1074.umn.edu (NEW) • hypnos.facm.umn.edu (NEW)
Bits ‘N Bytes • UMCal SAN storage moved last week; app upgrade is this weekend (10g) • PKI pilot final report delivered to CIO • OITSEC: servers authorized for relay.tc.umn.edu service will be scanned to get access, and quarterly thereafter
Steve Siirila sfs@umn.edu 612-626-0244 Chris Bongaarts cab@umn.edu 612-625-1809 ‘Till next month…