White dot for spacing only
The Dice Project


Operational Meeting

Minutes of the meeting held on Wednesday 9th April 2014 in IF-4.31

Present:
Ross Armstrong, Toby Blake, Lindsey Brown, Roger Burroughes, Chris Cooke, Alison Downie, Ian Durkacz, Graham Dutton, Stephen Quinney, Iain Rae, Gordon Reid, Craig Strachan (convener and minutes)
  1. Minutes of the last meeting

    These were accepted.

  2. Actions and blog articles

    Actions discussed:

    Actions added:

    Actions completed:

    Blog articles suggested:

  3. Report from Computing Executive Group

  4. Reports from units

  5. Topics for discussion

    1. Pandemic scenarios and unit lists

      Graham pointed out that if all members of a Unit were felled by a pandemic, there would be no-one reading Unit emails and receiving Nagios alerts. This is obviously a problem. All Units have arranged that Unit Nagios alerts are received by anyone with that Unit's role so the obvious first step is for the pandemic substitutes to give themselves the role of the Unit which normally has responsibility for the services they are concerned with. Similarly, they should add themselves to the appropriate mailing lists. Graham and Craig will come up with the means to do this and publicise them.

    2. OpenSSL vulnerability

      By the time of the meeting, all DICE managed servers and client should have been running the patched version of the SSL libraries though of course certificates still needed to be renewed and services restarted.

      There was some discussion over which services were actually vulnerable (https was the only one positively confirmed) and how self-managed machines should be scanned with the objective of closing the firewall holes of any machines at risk.

      In the end, it was agreed that Graham would produce a scanning tool, User Support would do the actual scanning and firewall hole closing and Stephen would write the blog article covering the issue and our response.

      Stephen has produced a wiki page detailing how to push out urgent security fixes the next time something like this happens

  6. Items for the Computing Systems blog

    SSL Vulnerability (see discussion above).

  7. AOCB

  8. Next meeting

    The next meeting will be on 26th April 2014 at 10:00 in IF-4.31, chaired by George.


 : Operational : Meetings 

Mini Informatics Logo - Link to Main Informatics Page
Please contact us with any comments or corrections.
Unless explicitly stated otherwise, all material is copyright The University of Edinburgh
Spacing Line