November MAR
F5 LTM (WIN): The HIll and Stevenson F5 hardware is online. We are operating under a considerably stricter set of firewall rules for the networks attached to the LTMs. There are several projects lining up to utilize the LTM
Sun Identity Management: We are using a new web application to track our project tasks. This has been a great help, since I now have defined goals to meet. The only drawback is that there is a bug in the application which prevents me from updating the status of my task, and I don’t really like this since it displays my stuff as Not Started, so I send frequent email updates. I have moved the two CLDAP virtual machines that are slated for production behind the LTMs, and tested basic network connectivity. I’m in the process of doing the same for the ELDAP virtual machines.
NetTracker Data Archive: The NetTracker data was archived to the rolling 13 month window.
Backup Client Upgrades: I have begun upgrading the Legato client on my systems.
ITS Website Redesign: I have gone through two rounds of vulnerability remediation with the Network Security team. Many of the issues are false positives that are induced because of our security configuration. There were a couple of legitimate issues such a plain text authentication. This was something that our vendor was supposed to fix; however, I created some RewriteRules to remediate.
Website Maintenance: I had to add more storage to the WWW4 server. This was a really easy change to add another virtual disk to the VMs and grow the file system. I have received multiple helpdesk tickets to disable the ModSecurity rules for several websites. Rather than disable the rules, which would have left them vulnerable to the thousands of daily hack attempts, I tested and modified several rules to relax the restrictions under certain conditions. Unfortunately, the typical web advice on most forums is to disable ModSecurity for things like WordPress and Drupal when it becomes a problem.