Administrative Computing Committee

October 22, 1997 3:30pm

Members Present Mailen Kootsey, Chair; David Heise, Secretary; Dan Bidwell, Keith Clouten, Dan Cress, Rich Forrester, Kendall Hill, Lisa Jardine, Rebecca May, Robert Moon, Emilio Garcia-Marenko, Sue Schwab, Karen Wade
Prayer Keith Clouten
Minutes of Previous Meeting The minutes of the previous meeting were voted, after the wording in Lisa Jardine's report under Banner Reports was changed from:
   "the gifts data integrity errors have been corrected" to
   "work on cleaning up the data integrity problems in the gifts data is proceeding".
[*]Firewall Planning & Policies Dan Bidwell gave a report on Firewalls. Reasons were given for considering this approach. One reason is that there are UNIX machines connected to the Andrews network that are not closely administered, and these are easier to break into. This allows a "sniffer" to be installed via the insecure machine which can collect user IDs and passwords. Trying to stay ahead of the hackers is becoming increasingly time-consuming, and break-ins are becoming too frequent and too disruptive.

The question was asked, What policies do we want to implement when we build a firewall? The discussion focussed on six types of Internet access.

1. Telnet (and rlogin)

The following machines were considered to be sufficiently well maintained and monitored to allow telnet access from off campus:

* edmund
* orion
* charm
* jazz
* dawntreader
* elrond
* library

Redwood was excluded from the list. Anyone who needs to log in to Redwood from off campus can be asked to come in through another machine. SCT currently telnet to redwood, so an account would need to be provided on orion with some kind of secure password protection.

2. Ftp

It was felt that this should be restricted in ways similar to telnet.

3. File and Print Sharing

There is no need to allow off-campus access to one of our printers, or mounting of our hard disks.

4. Oracle Database SQL-Net, Web Access

This will need to be studied as the Banner Web products are implemented. Some of this will need public access, such as registration and student inquiry from remote machines. Intranet-type access, such as for minutes, the bulletin and the Working Policy, should be restricted to on-campus only

5. Web access

Some of this will need public access, such as registration and student inquiry from
remote machines. Intranet-type access should be restricted to on-campus only.

6. Email

At present, the specific machine name is in the address, e.g. redwood.cc.andrews.edu. This should be hidden, as a matter of policy. Procedures need to be developed and implemented to bring this about.

Voted: That we implement the telnet limitation immediately via router.

Voted: That other measures be given further study and a report made back to this committee.

ITS Report David Heise presented a report on ITS (Information Technology Services), which is summarized here. The full report is attached.

1. AUCC has restructured and changed its name to ITS.

The changes presented at the last meeting were described more fully, and the new organization chart was distributed.

2. Banner 2.1 Upgrade and the Sun Enterprise 3000 Platform Conversion

On behalf of ITS, David Heise gave a public apology for the hardship and inconvenience caused by the delay in registration, and for the stress this caused for staff who had to work under these circumstances. He also explained that while the delay in the start of registration was regrettable, not to have proceeded with the platform conversion prior to registration would have been trading a low probability risk of conversion problems for the certainty of having serious performance problems using the previous hardware. See the attached full report for further details.

3. Administrative Systems Projects

Owing to a shortage of time, this part of the report was skipped.

4. Staffing in Administrative Systems group

David Heise reported that Gary Dickerson has accepted the position of Assistant Director, Administrative Systems (previously Programming Department), and that he will start on November 3.

He also reported that that Leo Chan resigned at noon last Friday, and that his last day will be Friday October 31. We have been unable to fill the Programmer/Analyst vacancy created when Aldy Hernandez resigned. The position was offered to one of the candidates who applied, but the offer was declined. Now there are two vacancies. This leaves only two people in that department with more than a few months experience. Our advertising via church papers and electronically has not produced any useful results. A number of possibilities have come to our attention informally, and we are pursuing these.

These staff shortages are severely impacting the ability of the ITS Administrative Systems group to load academic history data, clean up development data, as well as solve other outstanding Banner problems. After listening to the discussion about these problems and the shortage of resources to apply to solving them, Emilio Garcia-Marenko described this as a "crisis situation", and moved that a task force be set up, called by the chair, to determine the critical needs, propose a solution, and present it with appropriate justification to the University administration for immediate action. The motion was carried.

Adjourned 5:10pm




____________________________________
Chair: J Mailen Kootsey



____________________________________
Secretary: David Heise