Information Technology
104 Computer Science Bldg
500 W. 15th St.
Rolla, MO 65409
Phone: 573-341-4357
Fax: 573-341-4216
help.mst.edu
IT Internal
- Do you use FTP to transfer files to the University network from off campus?
- Do you telnet into campus on a regular basis?
- Do you map network drives using SAMBA from an off campus machine or through the wireless network?
- Do you use Eudora, Mozilla or Netscape Messenger for viewing your email off campus?
- Have you even heard of LDAP or REXEC?
If you answered "yes" to any or all of these questions, then you need to read the rest of this article.
All of the applications above (FTP, telnet, SAMBA, email clients, REXEC, LDAP) have one very important connection: they all transmit credential information--Single Sign-on (SSO) User IDs and passwords--in cleartext form. That is, your password is not encrypted before it is sent over the network. This constitutes a very serious threat to the integrity of the network in general and to your personal data in particular. If your credential information is somehow stolen, then an imposter can literally steal all of your data and cause other mischief on the network, all the while posing as YOU!
IT is committed to providing a safe and secure network for all customers. Applications that transmit clear text passwords are a severe security risk. Note that this pertains to all insecure protocols attempting to access the data center to protect University credentials.
IT will no longer support the following applications for our off-campus and wireless customers.
- IMAP / POP3 -- email protocols used by Eudora, Mozilla, and other email clients. These email clients often use "unsecure" IMAP by default. However, it is a very simple procedure to check a box within the application that will enable "secure" IMAP (see the secure alternatives below).
- Telnet -- gateway into UNIX operating system
- FTP -- file transfer protocol used to move files from off-campus to
on-campus and vice-versa - SAMBA -- maps network drives to local machine
- AppleTalk -- Macintosh version of SAMBA, used for the same purpose
- REXEC -- old UNIX remote command execution already disabled on campus
- LDAP -- directory service lookup utility
Users on campus will still be able to utilize all of the applications above freely.
Off-campus users who wish to use the services above will be required to use a secure alternative. If you would like assistance with downloading/installing any of the secure alternatives below, please contact the Help Desk at 341-HELP.
| Application | Secure Alternative |
| IMAP / POP3 | Ensure that the email client (Eudora, Mozilla, Netscape Messenger, etc.) is configured to use SSL encryption to transmit data |
| Telnet | Windows (PuTTY), MacOS, Linux, or VPN connection |
| FTP | SFTP, WinSCP (Windows), Fugu (MacOS X) or VPN connection |
| SAMBA | Samba is no longer supported by IT. Instead, customers should create a VPN connection and map drives to the desired Network File Storage location. |
| AppleTalk | VPN connection for Mac OS X |
| REXEC | Mostly disabled on the network, may be able to use PuTTY X-tunneling |
| LDAP | Enable SSL |
Off campus users who initiate a Virtual Private Network (VPN) connection will be able to use their normal applications because VPN "tunnels" inside the campus firewall and the user is, for all intents and purposes, afforded the same protection as an on campus user.
IT customers are also encouraged to engage in safe password usage. Guidelines for passwords are located at:
The password changing utility is located at:
If you have any questions or comments regarding IT's Secure Credential Initiative, please contact the Help Desk at 341-HELP or submit an online Help Request at https://help.mst.edu. Help Desk technicians can also assist in installing and configuring secure alternatives to the unsecure applications.
Missouri University of Science and Technology | Rolla, MO 65409 | 573-341-4111 | 1-800-522-0938
©2008 Curators of the University of Missouri | UM System | Intellectual Pluralism
Mission · DMCA · EEOC · Disability Resources · Contact S&T