. .

Recent News

The Compensating Controls & Exceptions Form is up

Here are the Compensating Controls & Exception process submision forms for the UCSS.

Security Boot Camp outline up for comment

The CIO Security Group is developing an "Information Security Boot Camp" program that will be taught later this year. Comment on the proposed outline is encouraged during development. Check out the basic outline here

Check the Blackhole List

To see the current Blackhole listing click here

Report an Incident

To report a security breach or other security incident send an email to Security@osu.edu

Frequently Asked Questions

This page contains links to some of the most common questions - and answers for those questions - that we receive on a regular basis from end users regarding information security issues and threats. If you have a question that you feel we should include in our list please contact us and let us know and we will consider including it.

Section 1 - General Questions

  1. I have a general comment or question relating to computer or network security at OSU...
  2. I have a question about an ISS Scan...
  3. I have a question about the Review software...

Section 2 - Mail & News Questions

  1. I've received unwanted E-mail (spam) - to whom should I report it?
  2. I'm receiving harassing E-mail - how can I stop it?
  3. I'm being bombed with a large number of E-mail messages - what can I do?
  4. Someone from one of OSU's address blocks is sending bad E-mail to us.
  5. I saw a posting from an OSU news server which was forged.

Section 3 - Incident Response Questions

  1. I'm seeing suspicious activity from one of OSU's address blocks.
  2. I'm under attack by a denial of service attack from one of OSU's address blocks.
  3. How can I tell if I've been hacked?
  4. How can I secure my Windows/Unix/MacOS/Multics/... computer?
  5. Why does the security group say my computer is infected when the anti-virus scan comes up clean?
  6. Why is the security group urging me to rebuild my computer?
  7. Do you have any advice on how to investigate a compromised computer?

Section 4 - System Configuration Questions

  1. How can I secure my Windows/Unix/MacOS/Multics/... computer?

Section 5 - Firewall Questions

  1. What is a firewall, and why do I need one?
  2. Won't it cause problems with ... ?
  3. What do you recommend?
  4. What's wrong with NAT based firewalls?
  5. Why doesn't the University just put a firewall in at the Internet border?
  6. What does the University block at the Internet border?

Section 6 - Scanning Questions

  1. What scanning does the University do?

Section 7 - Blocking/Unblocking & Warning Questions

  1. Why do you block access to computers when they've been compromised?
  2. How do I request that the block be removed?
  3. Why wasn't I notified when my computer was blocked?
  4. Isn't this a little harsh?
  5. Is there a difference between a block and a warning?

Further Questions?

If your question is not listed in the above FAQ, please use the form below to contact us. We will respond to your inquiry as soon as possible.

Your Name:

Your e-mail address:

If phone contact is preferred, the phone number where you can be reached:

What is your primary role at the university? (e.g. Faculty, Staff, GA, Student)

Message:

Please enter the word(s) shown below in the "Captcha" box. This helps prevent spam from filling our email so we can focus on legitimate questions like yours.