Secure Svcs Mtg Minutes
Monday, March 26, 2001
Attendees: Jim B, Mark, Ryan, Harold, Aaron, Sid, Rick, Donn, Lori, Brad, 
Nathan, RL Bob

SSHv2 Keynes:

- harold: it's not pretty, but should be deployed fully in the next day or 
  two. we're using the version from openssh.org

Communication:

- rick: sent announcement to support list (3/23) and cac-all (3/26) and 
  have received some good feedback.

- rick: campus-wide announcement will go out 3/29-3/30

- rick: do we need to add to the end-user web site, something parallel
  to Mac/Windows for Unix/Linux systems? answer: probably - will contact
  dittrich to see what we can link to.

- brad: since one of the project objectives is to promote secure 
  methods within C&C, maybe we should target C&C sysadmins of all kinds
  to deploy secure services and turn old, insecure services off, even
  if they aren't based on UW NetIDs.

- on 4/18 donn will install message on insecure telnet login to let
  users know their connection is insecure. he needs text, preferably
  just a few lines worth, which inform and point off to the web site

- late April, we will begin emailing folks using insecure IMAP (and POP?)
  connections. donn/eliot will work on extracting this info from the logs.
  we'll need text to send. we'll also need to monitor progress and 
  schedule repeat messages as appropriate

Other:

- UWICK should be available at the bookstore Wednesdayish

- donn will look into rlogin daemon and r* commands to see what stays
  and what goes

- brad will talk to Sid, who happens to be in tocuh with many DBAs,
  to see what, if anything, can be done to promote secure methods
  where ODBC is concerned

- donn/brad will take a look who's using XDM services and maybe
  try to contact them before those services are turned off

- brad will check whether modem pool can be used to telnet to other hosts