From: Debra Bartling (debrab_at_uclink.berkeley.edu)
Date: Mon Aug 04 2003 - 13:07:06 PDT
At 12:17 PM 8/4/03 -0700, Aron Roberts wrote:
> I think it's important that Craig (and SNS folks, generally) truly
> 'get' the message that there are as yet many unmanaged or under-managed
> workstations on campus on which patches are not routinely applied, even
> for repeated vulnerabilities identified by OS vendors as "critical."
Addressing the issues of a small department with limited resources and no
redundancy ....
I am a programmer and Unix system administrator and I work on a grant. We
have no separate funding or resources to support our PCs, but I look after
them by default. These days, I think I spend as much time supporting our
group's 12 PCs as three large Unix servers, but no one is really funding
this effort (and if nothing breaks, it's mostly invisible work).
I was out of the office since last Tuesday and just caught up on email. So
far this morning I've updated 5 machines and found 2 to be suspicious.
Blocking at this point is probably too late for us.
Usually when I'm away for more than a few days, I ask a colleague in
another department to cover critical Unix issues and emergencies (and have
never needed to call on them). It looks like we need to plan for coverage
on the PC side as well.
Debra Bartling
Programmer/Analyst
Earthquake Engineering Research Center
University of California, Berkeley
Phone: 510-231-9558
------------------------------------------------------------------------
The following was automatically added to this message by the list server:
For information about Micronet, including subscribing to
or unsubscribing from its mailing list and finding out
about upcoming meetings, please visit the Micronet Web site:
<http://micronet.berkeley.edu/>.
This archive was generated by hypermail 2.1.5 : Mon Aug 04 2003 - 13:11:53 PDT