December, 2002
DOE Logo
DOE Cybersecurity Audit Seeking Out Vulnerabilities -- Here's How to Make Sure Your Computer Protection Systems are Current

The DOE Office of Oversight and Assurance is conducting vulnerability scanning against all LBNL computer systems as part of a comprehensive effort to ensure that all national laboratories have appropriate cybersecurity measures in place. The Lab's Computer Protection Program and the Computing Infrastructure Support Department have been scanning all computers on the Lab networks to identify vulnerabilities and alert users of the vulnerable systems so they can be made secure.

New Wireless Policy on Installation, Security Goes Into Effect Monday, Jan. 13
A new Lab policy aimed at ensuring interoperability and security of wireless communications systems at the Lab will go into effect on Monday, Jan. 13. Under the new policy, all Wireless Access Points (which provide wireless service to a specific area) must be installed and managed by LBLnet, the group responsible for the Lab's networks.

Lab's Library Faces Challenges as It Adapts to Changing Demands, Expectations
Berkeley Lab's Library, which has provided LBNL researchers with critical resources for more than 50 years, is assessing how best to continue delivering information in light of increasing costs, greater emphasis on electronic media and changing expectations of users. To help with this effort, the Lab's Computing and Communications Services Advisory Committee (CSAC) has created a committee to work with the Library to evaluate how best to meet employees' information needs.

Tip of the Month -- Forwarding Separate Emails in a Group
A Lab employee recently asked, "How can I forward numerous emails (en masse) to an offsite email address? I don't want to have to forward each one individually - it would take too long. Any ideas?" Here's the solution, for users of the Lab's Netscape Communicator email client.

 Protecting Your Computer

UNIX Support Group Offers Monthly Security Support Service
After an initial test period, the Lab's UNIX Support Group is now offering dedicated, ongoing security support for users of UNIX and Linux workstations. The new service includes installation of the latest security software, constant monitoring for attacks and up to eight hours of system cleanup in the event of a security breach. Read the September Computing and Communications Services article for more information.

Cisco's John Stewart to Speak at Jan. 9 Computer Protection Lecture
John Stewart, Lead Engineer at Cisco Systems and former president of the World Wide Web Consortium (W3C), will be the featured speaker at the January 9 Computer Protection Brown Bag in the Bldg. 50 auditorium from noon to 12:45 p.m. A top-rated speaker, John will talk about the distributed denial of service threat.

UNIX/Linux Security Hands-on Course to Be Offered Jan. 16
A new course, UNIX/Linux Security Hands-on, will be held in Bldg. 51L from 9 a.m. to 5 p.m. Thursday, January 16. A description of this course, which is designed to give attendees practical, hands-on skills in securing their UNIX and Linux systems, may be found here. Because this is a hands-on course, space is limited. Visit to enroll. Enrollment will be on a first-come, first-served basis.

Windows Users - Current Security Patches and Hot Fixes Now Available
If you have a Windows NT, Windows 2000, or Windows XP system, it needs to be running the most recent Service Pack (SP) if it is to be secure. Windows 95, 98 and Me users need to install "hot fixes."

Apache Web Security Guidelines Are Now Available
Apache webmasters -- is your Apache server secure? Go here for guidelines on securing Apache web servers.

Monthly Virus Update: Here Comes the Brid (and Other Viruses)
Last month viruses and worms continued their usual assault against the Lab's systems. The LBNL virus wall received a total of 515,442 attachments, 7,136 of which were infected with viruses and worms. Viruses and worms that target Windows systems were once again most prevalent.