Category Archives: Security

https://www.flickr.com/photos/eworm/

After Hours Shineman Entry Requires ID

The Shineman Center is open Monday through Friday from 6:15am-10:30pm.  Weekends are variable dependent upon weekend events.  After hours entry will now require your College ID.

Selected students are given College ID card access based on their program of study, course enrollment, and/or specifically by ID.  Access is updated when course enrollment or program of study changes.  Any student who does not have after hours entry access and believes they should are encouraged to contact the department offering the course or activity.

The only door with card access is on the northwest side of the building (facing the Marano Campus Center).

Google Chrome Now the Default Web Browser in Labs and Classrooms

Previously, Internet Explorer (IE) was the default browser in labs and classrooms. However, with the increasing security vulnerabilities in IE, especially the one affecting IE versions 6-11 late last spring, we decided it would be a good time to re-evaluate the default browser.

To help us decide, we took a look at what browsers are accessing the SUNY Oswego website. From the network traffic originating from both on and off campus, Google Chrome is number one.   We also took a look at just the traffic originating from on-campus and that also was Chrome. Given that, coupled with the fact that SUNY Oswego is a Google Apps campus, we decided to promote Chrome.

As you can see from the image below, Chrome, IE and Firefox are still available for use from the quick launch bar on the bottom of the screen.  However, if you click on an HTML link within an application such as PowerPoint or Word, the default browser will be launched.

 

Upcoming Changes to myOswego

Look for some login changes coming to myOswego and its associated applications in the next few weeks.

CTS has been working on streamlining authentication into multiple systems that use the same username and password, primarily your Laker NetID.  Two of those systems are myOswego and DegreeWorks.  In the next few weeks, a new technology called Single Sign-On will be implemented to accomplish this.  The myOswego webpage will be changed to something similar to the following.

 

Existing students, faculty and staff will use the “Single Sign On” button to login.

What is Single Sign-on (SSO)?  It is a technology that allows services to share authentication credentials without having the user login to each service.   In the context of myOswego, once you login to myOswego, you will also be logged into Degreeworks.  You will not have to enter your Laker NetID again to access Degreeworks.  However, this also means you must be vigilant about logging out of all systems using SSO.  If you forget to log out, you leave yourself signed into both systems.

CTS will be expanding single sign-on to other services in the future.

 

Did You Miss the Cyber Security Awareness Training?

During October and November 2012, CTS hired GreyCastle Security to provide Cyber Security Awareness trainings to all SUNY Oswego faculty, staff and students.

Tyler Wrightson from GreyCastle Security conducted all sessions in a very knowledgeable and engaging style.  He covered topics such as using strong passwords, social engineering practices used to obtain usernames and passwords, social media security (such as Facebook), mobile device security, shoulder surfing, physical security and spam and phishing scams.  All principles taught could be applied to both work and home situations.

Some anonymous feedback from attendees of the sessions had this to say about Tyler and the training:

“It was very interesting and I learned a little more about my internet security at work as well as at home.  I appreciate that I was able to ask questions related to my home use of the internet, not just my business use.”

“He was very interesting and gave excellent info without being too technical.”

“The Castle speaker was so knowledgeable so had great examples of the problems he presented.”

If you missed the training, there are still a couple of options available to you.

  • Tyler will be back on campus on January 16th offering two more sessions during Winter BreakOut.  They are:
  • GreyCastle allowed CTS to record a session and make it available to campus members only.  We have the recording available from the CTS Security page.  Note, you will need to sign in with your Laker NetID to access it.  You’ll be prompted to do so.

CTS will be following-up the Security Awareness Training with our own session on learning more about the differences between spam and phishing emails and how to accurately report them in Gmail.  This will also be offered during Winter BreakOut: