•  Security Bug in Java Software

     A serious security vulnerability called “Java Zero-Day Exploit” has been discovered within Web browsers running Java version 7. On 10-Jan-2013, the US Department of homeland security released a statement regarding the exploit, recommending that you disable java in your browsers if it is not needed. Hamline is taking this exploit as a serious security issue and is taking steps to patch the Hamline computers to the safest release possible.

    Links to Additional Information:
    http://www.zdnet.com/homeland-security-warns-java-still-poses-risks-after-security-fix-7000009785/
    http://www.kb.cert.org/vuls/id/625617

    The Hamline ITS department is encouraging everyone to review your personal computers and devices and take the appropriate steps to secure your equipment.

    Does the Java bug affect you? Quite possibly!
    Check your level of Java to see if you need to A) Disable it, B) Upgrade it or C) Do nothing.

    Step # 1 - Check your level of Java:
    From each of your personal computers or devices, click on link: http://javatester.org/version.html and give it the okay to run on your computer. 
    If your Java is 1.6.x.xxx or 1.7.0_11xxx you are fine. If it is 7.0.xxx, continue below. 


    Step #2 - What should you do?
    Many users have Java installed but don’t actually need it. If you are not sure, please disable Java on your machine. 
            Known Hamline Applications that do need Java: 
      • Banner
      • Tarantella
      • Respondus Lock Down Browser
      • Blackboard Collaborate

    A). How to disable Java:
    http://java.com/en/download/help/disable_browser.xml

    B). How to upgrade to the newest release of Java: (Three steps: Download, Install, Enable)
    Download link for Java: http://www.java.com/en/download/ 
    How to enable Java: http://java.com/en/download/help/enable_browser.xml

     Beware of Fake Updates:  http://reviews.cnet.com/8301-13727_7-57565035-263/beware-of-fake-java-updates/

    What should you do about your campus computer?
    All Hamline-managed PC and Mac computers (those with an inventory tag) will be taken care of by ITS staff.

    How do you know if a campus computer is “Hamline-managed”?
    If it is in the Hamline ITS inventory, it will have an inventory sticker – something like NC10333)



    ------------ recent history of the problem is below ------------------

    Mar 04 2013: Oracle issues emergency Java update to patch vulnerabilities 
    http://news.cnet.com/8301-1009_3-57572496-83/oracle-issues-emergency-java-update-to-patch-vulnerabilities/

     
    Jan 14, 2012
    Warning issued that Release 11 may not fix all aspects of the problem. Disable Java if/when not needed.

    Jan 14, 2012
    Oracle issues a new release of Java to fix the vulnerability in release 7. The newest level, released today, is Version 7, Update 11.

    Jan 11, 2012
    Users are advised to disable Java on their computers and devices.

    Jan 10, 2012
    The Department of Homeland Security and computer security experts said on Thursday that hackers figured out how to exploit the bug in a version of Java used with Internet browsers to install malicious software on PCs. That has enabled them to commit crimes from identity theft to making infected computers part of an ad-hoc networks that used to attack websites.

    Oracle said that the flaws only affect Java 7, the program's most-recent version, and versions of Java software designed to run on browsers.

    Full Homeland Security notification. http://www.us-cert.gov/cas/techalerts/TA13-010A.html
     

     


     
  • ITS News
    • Hamline ITS is pleased to announce that Google Drive is now officially available for use with the same kind of security in place with network drives. The documents that you create in Google Drive are now being backed up with Spanning Backup.

    • On June 1, 2013, Hamline ITS will officially shutdown Groupwise and remove the client from all campus workstations

    • Spanning Backup allows you to retrieve your deleted Google files and calendar
    •