Rob McNicholas

LDAP SSL/TLS changes

February 19, 2019 by Rob McNicholas

At this time, the department LDAP server ldap.eecs.berkeley.edu (aka ldap.cs.berkeley.edu) accepts implicit SSLv3 and TLS 1.0, 1.1 and 1.2 connections on port 636, and allow STARTTLS negotiation for the same protocols on port 389.

Beginning Tuesday, February 19th 2019 at 8am, our LDAP servers will no longer accept SSLv3 or TLSv1.0 connections. All clients must use TLS v1.1 or v1.2.

Please send any questions or problem reports to help@eecs.berkeley.edu.
[Read more…] about LDAP SSL/TLS changes

December 2018 Linux Server Patching

December 11, 2018 by Rob McNicholas

Routine Red Hat Linux operating system patches have been released which require system reboots. Starting at 6pm Wednesday, Dec 12, IDSG will be patching and rebooting affected servers. The following services will experience brief outages of 10 minutes or less between 6pm and 7pm.

* Department mailing list services (lists.eecs.berkeley.edu)
* Department ftp server (ftp.eecs / ftp.cs.berkeley.edu)
* Department jabber/xmpp service (jabber.eecs.berkeley.edu)
* IRIS website (iris.eecs.berkeley.edu)
[Read more…] about December 2018 Linux Server Patching

November 2018 Linux Server Patching

November 14, 2018 by Rob McNicholas

Routine Red Hat Linux operating system patches have been released which require system reboots. Starting at 6pm Wednesday, Nov 14, IDSG will be patching and rebooting affected servers. The following services will experience brief outages of 10 minutes or less between 6pm and 7pm.

* Department mailing list services (lists.eecs.berkeley.edu)
* Department ftp server (ftp.eecs / ftp.cs.berkeley.edu)
* Department jabber/xmpp service (jabber.eecs.berkeley.edu)
* IRIS website (iris.eecs.berkeley.edu)

Resolved as of 2018-11-14 18:33:00

October 2018 Linux Server Patching

October 10, 2018 by Rob McNicholas

Routine Red Hat Linux operating system patches have been released which require system reboots. Starting at 6pm Wednesday, Oct 10, IDSG will be patching and rebooting affected servers. The following services will experience brief outages of 10 minutes or less between 6pm and 7pm.

* Department mailing list services (lists.eecs.berkeley.edu)
* Department ftp server (ftp.eecs / ftp.cs.berkeley.edu)
* Department jabber/xmpp service (jabber.eecs.berkeley.edu)
* IRIS website (iris.eecs.berkeley.edu)

Resolved as of 2018-10-10 19:00:00

Retiring amd.home.* NIS maps

September 18, 2018 by Rob McNicholas

For many years IDSG has published automount maps in both autofs format as well as amd. This was because some systems used autofs and some used amd. This is no longer the case – autofs is available on all our supported operating systems. Effective September 2018, the amd.home.eecs and amd.home.cs maps are now frozen (no new accounts are being added) and they will eventually be retired from NIS.

IRIS Applications Unavailable Sun May 20 8am-8:30am

May 20, 2018 by Rob McNicholas

The IRIS Roster and Network applications will be unavailable Sunday May 20 from 8am to 8:30am for system maintenance. IST will be patching the database server during this time.

Resolved as of 2018-05-20 08:30:00

EECS Mailing Lists Maintenance, May 9 6pm

May 9, 2018 by Rob McNicholas

The Department’s Mailing List Server will be offline for maintenance Wednesday May 9, 2018 from 6pm-7pm. During this time the operating system will be patched, and a new SSL certificate will be installed for email and for the web interface

Any mail sent to a list during the maintenance will be queued and retried; no mail will be lost but delivery will be delayed.

Please send any questions to help@eecs.berkeley.edu.
[Read more…] about EECS Mailing Lists Maintenance, May 9 6pm

jabber.eecs SSL certificate was updated

April 23, 2018 by Rob McNicholas

The SSL certificate on the Department’s jabber/xmpp server jabber.eecs.berkeley.edu expired at 5pm on April 23 2018. It was replaced around 6:45pm. During that window, people attempting to connect would have received an error that the SSL certificate was invalid.

The new certificate has these properties: * Serial Number: 00:de:f4:8a:a1:d8:0c:0b:69:88:21:b4:82:2c:d1:da:e2
* Expiration Date: Mar 27 23:59:59 2020 GMT
* SHA-256 Fingerprint 10:59:4E:2E:D1:37:7E:92:1D:0D:BE:3C:E1:72:CF:6A:5B:4C:62:55:88:59:0E:5F:CC:3A:51:1B:03:AB:B0:B8

My apologies for the brief outage.

Resolved as of 2018-04-23 18:44:00

jabber.eecs SSL certificate update

March 28, 2018 by Rob McNicholas

The Department’s Jabber/XMPP server jabber.eecs.berkeley.edu will have a new SSL certificate installed tonight at 5pm as the current certificate is due to expire. No outage is expected but some clients may complain. Try restarting your chat client if you experience any problems.
[Read more…] about jabber.eecs SSL certificate update

March 2018 Linux Server Patching, Wednesday March 14 6pm

March 14, 2018 by Rob McNicholas

Routine Red Hat Linux operating system patches have been released which require system reboots. Starting at 6pm Wednesday, March 14 2018, IDSG will be patching and rebooting affected servers. The following services will experience brief outages of 10 minutes or less between 6pm and 7pm.

* Department mailing list services (lists.eecs.berkeley.edu)
* Department website content hosted on www2.eecs.berkeley.edu
* Department ftp server (ftp.eecs / ftp.cs.berkeley.edu)

Resolved as of 2018-03-15 18:00:00