Tag Archives: LIS Staff Interest

Weekly Web Updates – October 17, 2016

Updates

Fixes and Tweaks

  • Occasionally, when updating content on our Drupal sites, the front-end Varnish cache was not cleared on save because the script handling that event had Windows-style rather than UNIX-style line endings and silently failed. This was corrected.
  • We dropped SSLv3 support in favor of TLS on Drupal and WordPress sites.
  • Removed a duplicate page title above the breadcrumb on the Sustainability site.

Ongoing Work

  • Adding integration with Google Drive folders for the Course Hub.
  • Building out the configuration of our CAS, GO, MediaWiki, and Course Catalog servers in Chef, which is a configuration management system. We have already completed this work for our Drupal and WordPress environments.
  • Upgrading the Drupal sites for the Davis programs, Dining Menus, and Museum of Art to Drupal 8.
  • Populating mailing lists in the MyEmma email system from Banner.

@MiddInfoSec – Phishing Alert: don’t fall for “Web Mailbox” scam email

Be on the alert for a suspicious email purportedly sent from “webmaster@middlebury.edu” with the subject line “Web Mailbox”.

This is a confirmed phishing message, designed to trick you into divulging your username and password. If you find a copy of this message in your spam quarantine, please ignore it. If you find a copy of the message in your inbox, please delete it.

If you find this message in your spam quarantine, do not release it. It will be deleted automatically in the next few days. Do not click on the links in the message or reply to the message.

20161012-webmaster-phish

For more information about phishing attacks, please visit http://go.middlebury.ed/phishing.

For more information about the spam quarantine, please visit http://go.middlebury.ed/spam.

Weekly Web Updates – October 10, 2016

Updates

Fixes and Tweaks

  • We made numerous improvements to page performance on the MiddSTART site, which now loads much faster.

Ongoing Work

  • Adding integration with Google Drive folders for the Course Hub.
  • Building out the configuration of our CAS, GO, MediaWiki, and Course Catalog servers in Chef, which is a configuration management system. We have already completed this work for our Drupal and WordPress environments.
  • Upgrading the Drupal sites for the Davis programs, Dining Menus, and Museum of Art to Drupal 8.
  • Populating mailing lists in the MyEmma email system from Banner.

@MiddInfoSec – Phishing Alert: don’t fall for “You have 1 Unread mail!” scam email

Be on the alert for a suspicious email *purportedly sent* from “Public Safety” with the subject line “You have 1 Unread mail!”. This is a confirmed phishing message, designed to trick you into divulging your username and password. If you find a copy of this message in your spam quarantine, please ignore it. This message was not sent from Middlebury’s Department of Public Safety, but was cleverly constructured to look like it was. If you find a copy of the message in your inbox, please delete it. Do not click on the links in the message or reply to the message.

pasted_image_at_2016_10_10_11_09_am.png

For more information about phishing attacks, please visit http://go.middlebury.edu/phishing.

For more information about the spam quarantine, please visit http://go.middlebury.edu/spam.

This way to the Unplug and Recharge Room

Follow the arrows, and find some time for yourself! Take a break from your studies for just one – quiet – moment. You’ll feel refreshed, we promise.

Photo of Unplug and Recharge Room

Just follow the arrow

The Unplug and Recharge Room will be available through November on the Upper Level of the Davis Family Library, but you may borrow meditation cushions all year long from the circulation desks at the Davis Family Library and the Armstrong Library.

QuickTime for Windows Removal

ITS is relaying to our campus customers an Alert from the US Computer Emergency Readiness Team about Quicktime on Windows.

Apple has “deprecated” the Quicktime program and is calling for computer users to uninstall the program.  Since this is a security risk, ITS has removed Quicktime on campus computers and replaced it with the VLC program which has been identified as a proper replacement.  Many computers on campus already have VLC installed.  Adobe is working on some patching of their products which may still depend on Quicktime.  Please let us know if you run into any troubles with programs you use here on campus, by contacting the helpdesk (helpdesk@middlebury.edu) or creating a helpdesk ticket.

Thank you for your part in keeping our campus safe and secure.

@MiddInfoSec: “Middlebury College!” A Well Crafted Phishing Attack Looks to Come from the College

Warning! Over the past couple of days Middlebury College has been the target of a well-crafted  phishing campaign. Phishing messages are email messages designed to trick you into divulging your username and password. In this case, the phishing messages were written so that they looked like they were sent from Middlebury’s Department of Public Safety. An example of this phishing message is included below.

Middlebury’s email system was able to filter the vast majority of these phishing messages, delivering them into each recipient’s Spam Quarantines. Even with this protection, however, a few individuals released the messages from their quarantines, opened  the messages, and clicked on the phishing links therein.

Always use caution with quarantined messages. The quarantine is specifically designed to protect you from phishing attacks crafted to trick you into divulging your Middlebury account username and password.  If you have any questions about a quarantined message, contact the Help Desk or send a note to phishing@middlebury.edu. We would be glad to help.

Sample Phishing Message:

phish-1062016

For more information on phishing please visit http://go.middlebury.edu/phish. For additional details about spam filtering and the spam quarantine, please review Spam Filtering at Middlebury.