From: Jason Testart, Director, Information Security Services
What is happening? Early Wednesday morning, we were made aware of a bug in the bash shell where arbitrary code could be executed by simple injection in the environment. Bash is the default shell for Linux and Mac OS X. Every version through 4.3 is vulnerable (this could also affect embedded devices such as network attached storage (NAS), home routers, etc…)
What is happening? Faculty of Environment building routers will be modified to place networked devices behind the campus firewall, which denies inbound connections by default.
Why is this happening? In accordance with audit requirements and the ongoing Campus Firewall Project, campus networks will be positioned behind a perimeter firewall. This will be the first faculty moved en masse - we have already successfully moved several academic support buildings.
When is this happening? Wednesday, September 24 at 7:30 a.m.
What is happening? WCMS sites are being upgraded to version 1.8.9. This is a maintenance release to address an issue with assigning the “student” role during authentication on sites with open authentication enabled.