[NCUC-EC] URGENT budget allocation to strengthen NCUC server

William Drake wjdrake at gmail.com
Thu Oct 16 17:45:20 CEST 2014 

Hello

NCUC’s email lists were down for a week until I noticed yesterday and asked the e-team folks to look into it.  Please read the below. The server was under attack. To strengthen its defenses, Tapani says we need to spend a few more pennies.  I would think this is priority number one for our funds.  Stefani and Roy have already expressed support for this on the e-team list.  I would ask that others here respond quickly so that we can act.

I formally propose authorization of whatever expenditure is needed to increase the memory by 3GB (Tapani didn’t specify the amount, but if 2GB is $5/month 3GB can’t be a budget buster.

Would appreciate a rapid response here folks.

Thanks

BIll

Begin forwarded message:

> From: Tapani Tarvainen <ncuc at tapani.tarvainen.info>
> Subject: [NCUC E-team] Server memory upgrade
> Date: October 16, 2014 at 12:54:22 AM PDT
> To: "e-team at lists.ncuc.org" <e-team at lists.ncuc.org>
> 
>>> It might be prudent to get some more RAM for it.
> 
> On Oct 15 15:41, Brenden Kuerbis (bkuerbis at internetgovernance.org) wrote:
> 
>> If the EC authorizes it, I can work with the Treasurer here in LA to bump
>> memory up. Any recommended amount?
> 
> At least bump it up to 2GB (now it's 1.5G), which should cost
> something like $5/month (less if paying for more at once). If budget
> isn't too tight more might be useful, say up to 3GB - that might be
> overkill but even though adding memory is fairly easy, it still costs
> people's time and work every time, so too small increments may not be
> worthwhile.

On Oct 16, 2014, at 5:40 AM, Tapani Tarvainen <ncuc at TAPANI.TARVAINEN.INFO> wrote:

> It looks like ncuc1 is presently under ssh dictionary
> attack, authlog is full of stuff like this:
> 
> Oct 16 14:27:30 ncuc1 sshd[30041]: Failed password for root from 122.225.109.217 port 2955 ssh2
> 
> The attack won't succeed, root password logins have been
> disabled since the beginning, but if it intensifies
> it may slow things down (and it may be something like
> that caused the overload last week, too).
> It probably isn't particularly directed at us, looks
> more like a script kiddie scanning everything in sight.
> 
> For the curious, the that IP address is in China.
> If somebody feels like contacting their ISP,
> whois gives good-looking contact info.
> 
> Otherwise, I guess it might be a good idea to tighten
> the box a bit.
> 
> -- 
> Tapani Tarvainen
> _______________________________________________
> E-team mailing list
> E-team at lists.ncuc.org
> http://lists.ncuc.org/cgi-bin/mailman/listinfo/e-team

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ncuc.org/pipermail/ncuc-ec/attachments/20141016/a03c2620/attachment.html>

More information about the NCUC-EC mailing list