As you may have noticed, we’ve been having issues with the fileserver that hosts a number of project directories. We’re working on migrating the data to a new fileserver, as our attempts to get the old one stable have not been fruitful. We’re compiling the list of affected filesystems, but the short term answer is if the pathname has “proj-“ in it, it’s probably affected. Due to the amount of data we do not expect this to be back until tomorrow at this point. I’ll send updates as we have them.
Sorry for the trouble, and stand by for more info.
Due to some staffing changes that have left us temporarily short-staffed, we need to reduce the in-person hours for help desk coverage at the CELS Help Desk. Until further notice, in-person Help Desk hours are Monday to Friday, 9:00 AM to 11:30 AM, and 1:00 PM to 3:00 PM.
We’ll still be monitoring for trouble tickets outside those hours, however nobody will be sitting at the help desk. As always, send your issues to firstname.lastname@example.org (or email@example.com) to create a ticket.
(As a side note, due to illness the HD won’t be staffed at all today, November 2. If you can’t send e-mail, you can see who’s available in their office of me, Max, Ti, or John Roberts.)
The Exchange interruption should be corrected and mail should be accessible again. If it isn’t please restart your mail client or call the CIS service desk at 2-9999 Option 2.
All, it seems the Exchange mail server issues have still not been resolved. We are following up with CIS to get a status update and an estimation of when things should be back.
CIS tells us this issue has been resolved, however any tickets lost were lost permanently. So if you didn’t get any response, feel free to send a followup.
We’ve received reports of e-mails being sent to firstname.lastname@example.org, email@example.com, and firstname.lastname@example.org are not reaching the ticketing system. We’ve made CIS aware of the issue, and they are working on it. If you don’t get a response to your e-mail, you can try sending again, call the help desk at 630-252-6813, or use the self-service option with your Argonne account at http://help.anl.gov.
We’ll let you know more when we know more. There may be broader announcements from CIS on this as well.
Ever since IBM sold off its laptop line to Lenovo, I’ve been a little wary. Not paranoid wary, mind you, but as my role as a Cyber Security Program Representative (CSPR) at Argonne, I’ve been cautiously wary.
This wariness was not eased with each revelation of spyware installed on Lenovo laptops, including instances of it actually being installed in BIOS. I remained wary, but noted in each case the bad behavior was limited to the "consumer" line of laptops – the same lower-quality laptops they were making before the IBM PC/Laptop acquisition. I believed they would treat the Think line as sacrosanct, since it came with a customer base that was almost entirely business-based and one that was more sensitive to this type of behavior. I didn’t think they’d do anything to jeopardize that relationship.
Today, that changed. News came out of a Lenovo Thinkpad shipped with pre-installed spyware. This is a shame, since I’m still generally of the opinion that if you don’t get a Mac, the Thinkpad is the best laptop you can lay hands on.
Now this story (linked below), has a number of caveats, the main one being this was a refurbished unit. However, it indicates that a line Lenovo had previously seemed to be treating as sacred has been crossed. I don’t think, from a cyber security standpoint nor from a privacy standpoint, it’s a safe bet to trust the default software install on Lenovo laptops going forward.
Most users in CELS are running Macs, or are running Linux on their laptops. At this point (and I am carefully noting this is a personal recommendation from me and not yet a lab policy), if you wish to buy a Lenovo laptop, I strongly recommend replacing the default OS with a known safe build of either your own design or one supplied by us in Systems. If you’re going to install Linux on it, you’re probably just fine (though that’s by no means guaranteed to always be the case). If you want to run Windows, I’d recommend going with one of the Argonne-recommended laptops from Dell’s offerings. If you really want a Lenovo, and really want to run Windows, let us go over the machine before you take it on and make sure it’s running trusted software.
At some point, it wouldn’t surprise me if these spyware vectors changed and started to affect various Linux builds via BIOS infiltration methods, or possibly even hardware-level sniffing and capture methods. I don’t think it’s *likely*, but I wouldn’t be surprised.
Lenovo BIOS software installation: http://arstechnica.com/information-technology/2015/08/lenovo-used-windows-anti-theft-feature-to-install-persistent-crapware/
Box is coming on site (date TBD) and are looking to have an open and frank discussion about document sharing and collaboration with linux users. They want to know how they can improve the product for linux users. They’re looking for 7-10 users from across the lab. If you have an opinion on this and are willing to give a couple of hours of your time, please let me know. We need to have the list finalized by next week. I was going to send this to email@example.com, but I wanted to cast a wide net so I’m using the general announcement list.
Also, if you have specific things you want to make sure are addressed, also let me know. Ideally, I’d want you in the room to be able to be your own advocate, but if you can’t be (or aren’t on the final list), I want to be sure the big opportunities for improvement are expressed.
Power work in the data center has taken a handful of compute nodes offline for a few hours. They should be back online early this afternoon. The affected machines are:
Sorry for the inconvenience. We didn’t believe these machines would be affected by the work, however we were incorrect.
For a list of alternative machines, see https://wiki.mcs.anl.gov/IT/index.php/General_MCS_Questions#computeservers.