Please see Matt’s note below on a security vulnerability that affects Android users. Here’s the short version – there’s an issue that allows applications to masquerade as trusted apps. Google has identified the issue and is pushing out a fix. The fix is not there yet, and when it gets there will be dependent on your phone’s manufacturer and carrier. For instance, Nexus phones will probably get the update quickest. As soon as you get notified of the security update, please apply it. This only affects Android users, not iPhone users.
You can download and run this tool to assess if you’ve been affected. If you have, feel free to come to us for help in dealing with it. Right now it’s expected you will show up as “Vulnerable” to the “FakeID” bug. The others should show Patched.
On the heels of the new IT Access Agreement to include BYOD, a security company has discovered a flaw in the Android OS. There is a patch available that has begun to get distributed to the open source code base as well as to manufacturers. It is in the new IT access agreement to keep personal systems patched and up to date.
You can read about the vulnerability here:
You can read about the updated Argonne IT Access Agreement here:
We migrated the sites to the new server and re-exported the data. You should be able to read/write to these directories again. We’re spending the next couple of days looking for potential fallout from the move, so please let us know if something isn’t behaving as expected.
The disk that serves our FTP and MCS websites hosted in MCS (as opposed to the main MCS Drupal website hosted on the Argonne web server) has developed an error that was causing the server to crash. We’ve set the disk to be read-only while we sync the data to a new disk. We’ll send an announcement when this is resolved, but for the moment expect /mcs/www.mcs.anl.gov, /mcs/web, /mcs/ftp, and ~/public_html pages to be either inaccessible or read-only.
Sorry for the trouble.
UPDATE: Quick Update: We expect to have read/write access to the affected web hosts later today (July 16).
Things should be back to normal. Thanks!
We’ve encountered a problem that requires an unscheduled reboot of one of our primary virtual machine servers. This reboot will take out some core services briefly. Until things come back, many websites, git repos, mailing lists, and other services will not respond correctly. I’ll send an update when it’s resolved.
There are networking issues affecting most of Argonne right now. CIS is aware and are working on it. We’ll send a notice when we know more.
And we’re back. Things should be at the pre-upgrade state in terms of functionality. We’ll do some more dry runs on the upgrade before attempting again. Thanks for your patience.
The server is mostly back — there are some aesthetic issues we’re still ironing out, but main functionality should be there for everyone. Will send more when things are closer to done, but you can feel free to use it again. Sorry for the inconvenience.
The update has hit an unforeseen snag. We’re working on bringing things back, but will probably be another couple of hours. We’ll send an update when there’s more.
We will be performing maintenance on our Confluence server tomorrow, May 20th at 8AM. We will also be upgrading the installation to the latest version. We expect downtime to be no more than 15-30 minutes.
If you have any questions or if this outage window will cause any problems for you, please let us know by e-mailing firstname.lastname@example.org