OpenSSL released a security advisory bulletin on Thursday, March 19, detailing multiple high and moderate severity vulnerabilities in the secure sockets layer library used in Linux and Unix based systems.

The security vulnerabilities have been addressed in the most recent version of OpenSSL and should be available from the standard update channels for Linux distributions at this time. UAB IT encourages all Linux and Unix systems administrators take steps to update their systems during their planned update windows in upcoming weeks. 

More information is available at:

https://openssl.org/  and

http://www.cyberciti.biz/faq/howto-openssl-security-update-cve20150291-cve20150204-cve20150290-cve20150207-cve20150286/
Locking your computer when you leave your desk is just one of the ways to help keep your data secure, according to the March issue of the IT Risk Bulletin, a joint effort of UAB, the University of Alabama, UAB Health System and the University of Alabama-Huntsville.

In fact, “control-alt-delete before your leave your seat” is a reminder for employees to lock their PCs when they leave their desks. Mac users can lock their screens by pressing control-shift-eject at the same time.

Among other rules for security:

• Do not treat your work computer like your home computer.

• Do not use social networking sites like Facebook without proper privacy settings.

• Do not download shareware or freeware — free software — from suspicious Web sites.

• Do not allow your browser to remember passwords to secure sites like online banking or PayPal.

For more security tips and to see past issues of the bulletin, click here.

Since most people have their cell phones just about permanently attached these days, it’s easy to forget that we need to keep them secure.

The February edition of the IT Risk Bulletin, a joint effort of UAB, the University of Alabama, UAB Health System and the University of Alabama-Huntsville, provides dos and don’ts for phone and mobile device security.

Dos

• Enable security access.

• ONLY give your number out to people you know and trust.

• Use caller ID to block names and numbers of individuals you do not want to contact you.

• Delete emails that contain confidential or internal use information from your phone.

Don’ts

• Do NOT store confidential information on the phone, such as PIN numbers and credit card numbers.

• Do NOT take pictures or videos of anyone with your phone, or allow them to be taken of you, without permission.

• Never reply to text messages from people you don’t know and avoid in-person meetings with someone you know only through text messaging.

For more dos and don'ts and to see past issues of the bulletin, click here.

Work to repair telephone cables damaged during installation of a manhole last week is complete.

The damage caused an interruption of service to the Burleson Building and Building 912.

Crews worked after hours over the weekend to repair the damage.
Page 1 of 6