https://helpdesk.strw.leidenuniv.nl/wiki/ 2026-04-04T03:05:59+00:00 https://helpdesk.strw.leidenuniv.nl/wiki/ https://helpdesk.strw.leidenuniv.nl/wiki/lib/exe/fetch.php?media=wiki:logo.png text/html 2018-01-12T10:42:56+00:00 Anonymous (anonymous@undisclosed.example.com) https://helpdesk.strw.leidenuniv.nl/wiki/doku.php?id=policies:security:access&rev=1515753776&do=diff Baseline Security Access control 20. User management New users are either students or institute members. Their enrolment in the courses or their appointment as member of the institute is regulated elsewhere. Once this has taken place, personal information of these persons are entered into the Person database by the institute secretariat. Once this is done system management can use a WEB forms system to generate an account. text/html 2018-01-10T15:33:20+00:00 Anonymous (anonymous@undisclosed.example.com) https://helpdesk.strw.leidenuniv.nl/wiki/doku.php?id=policies:security:assets&rev=1515598400&do=diff Registration of assets Information repositories * RMSdb: Relational management Database * Helpdesk Wiki: User computer information store Software * Jobs Application System * Conference Management System * Local WEB server * Helpdesk * Astronomical Software * PC Software Hardware * CMDB: Computer management database Services * Poster printing * Toner warehouse * Hardware Acquisition * Software development text/html 2018-01-08T15:02:21+00:00 Anonymous (anonymous@undisclosed.example.com) https://helpdesk.strw.leidenuniv.nl/wiki/doku.php?id=policies:security:astro_soft&rev=1515423741&do=diff LINUX BASED WORKSTATIONS Large Packages for data reduction * AIPS : (Astronomical Image Processing System) * AIPS++ : (Astronomical Image Processing System --Object-Oriented) * AipsView : Aipsview is a tool for visual data analysis built at NCSA with support from the NSF/ARPA Grand Challenge project in Radio Astronomy Imaging. text/html 2018-01-10T12:19:10+00:00 Anonymous (anonymous@undisclosed.example.com) https://helpdesk.strw.leidenuniv.nl/wiki/doku.php?id=policies:security:audit&rev=1515586750&do=diff Security Baseline Auditing 40. IT Audit On a regular basis security checks are performed using standard web tools such as Qualys SSL Labs. In addition the yearly OS upgrade of all Desktops initiates a similar audit on the local machine base and ensures clean secure installes of all such devices. text/html 2018-01-15T16:42:59+00:00 Anonymous (anonymous@undisclosed.example.com) https://helpdesk.strw.leidenuniv.nl/wiki/doku.php?id=policies:security:calculations&rev=1516034579&do=diff Scientific Computing This service is a combination of several individual services that are related in terms of usage. Compute * Desktop computing: For quick and interactive scientific processing avdn office automation we provide a desktop with high cpu, ram and storage capacity. Each year we evaluate the requirements for such equipment and initiate a min-competitie to acquire yearly a new, up to date batch. Currently the systems provide 6 cores with hyperthreading, 16G ram and approximately… text/html 2021-09-20T07:28:37+00:00 Anonymous (anonymous@undisclosed.example.com) https://helpdesk.strw.leidenuniv.nl/wiki/doku.php?id=policies:security:classification&rev=1632122917&do=diff Baseline Security Classification 3. Registration of assets A list is available that records purpose and ownership of all assets 4. Line managers Due to the limited size of the IT Department there is no highly detailed denotion of line managers, but a text/html 2018-01-05T12:10:25+00:00 Anonymous (anonymous@undisclosed.example.com) https://helpdesk.strw.leidenuniv.nl/wiki/doku.php?id=policies:security:classificationguidelines&rev=1515154225&do=diff Classification guidelines Definitions Confidential Data is a generalized term that typically represents data classified as Restricted, according to the data classification scheme defined in this Guideline. This term is often used interchangeably with sensitive data. text/html 2018-01-15T16:45:27+00:00 Anonymous (anonymous@undisclosed.example.com) https://helpdesk.strw.leidenuniv.nl/wiki/doku.php?id=policies:security:data&rev=1516034727&do=diff Data We denote several types of data in the compute environment of the scientific systems: * Science generated: New information generated by lab experiments or theoretical calculations form the basis for the scientific output of the university. This unique type of data should be stored on highly save media and kept available for at least 10 years (data management requirement). text/html 2018-01-10T13:32:48+00:00 Anonymous (anonymous@undisclosed.example.com) https://helpdesk.strw.leidenuniv.nl/wiki/doku.php?id=policies:security:develandmaint&rev=1515591168&do=diff Security Baseline Development and Maintenance 31. System ownership System ownership for scientific systems is driven by the funding mechanism. Many systems are acquired though NWO and EU funding. The PI of the project is by definition the owner of the system. Both functional and technical management are in the hands of the IT Department. text/html 2020-11-21T14:47:50+00:00 Anonymous (anonymous@undisclosed.example.com) https://helpdesk.strw.leidenuniv.nl/wiki/doku.php?id=policies:security:homedir&rev=1605970070&do=diff Home directory This is the place where users store their local mail folders and where they can store personal files and files that need highly secure and reliability. It is of limited size (user quota in place) as the high reliability requirement forces a backup procedure that puts a high demand on the storage media. text/html 2018-01-15T16:18:12+00:00 Anonymous (anonymous@undisclosed.example.com) https://helpdesk.strw.leidenuniv.nl/wiki/doku.php?id=policies:security:mail&rev=1516033092&do=diff Mail Everything associated with mail has High rating as we are dealing with private and restricted data. So no one else then the owner of the mail should have access. Therefore, mail is secured through the user authentication and authorization measures of the text/html 2018-01-05T12:13:45+00:00 Anonymous (anonymous@undisclosed.example.com) https://helpdesk.strw.leidenuniv.nl/wiki/doku.php?id=policies:security:organization&rev=1515154425&do=diff Security Baseline Organization 1. Roles * Information security manager: This is in the hands of the Scientific Director(s). Currently Huub Rottgering and Eric Eliel. * Security Manager: This role is associated to the IT Department head. Currently Erik Deul text/html 2018-01-08T15:08:26+00:00 Anonymous (anonymous@undisclosed.example.com) https://helpdesk.strw.leidenuniv.nl/wiki/doku.php?id=policies:security:pc&rev=1515424106&do=diff PC-standard software * Adobe photoshop * Adobe acrobat reader * Adobe Acrobat professional * Adobe flash-player * Cutepdf * Ghostscript * Ghostview * Java * Mcafee * Microsoft Office 2013 * Microsoft Office 2016 * Microsoft Office lang-packs text/html 2018-01-15T16:40:31+00:00 Anonymous (anonymous@undisclosed.example.com) https://helpdesk.strw.leidenuniv.nl/wiki/doku.php?id=policies:security:remoteaccess&rev=1516034431&do=diff Remote access For the purpose of working outside the institute, access to the local systems is provided in several secure ways: * Remote login: There are ssh servers tha provide login facilities to the institute front end computers. These ssh servers can be used to further login to local Linux desktops and servers or can be used to build ssh tunnels to allow remote access to local facilities, such as desktop graphical interface or license server. text/html 2018-01-10T11:47:21+00:00 Anonymous (anonymous@undisclosed.example.com) https://helpdesk.strw.leidenuniv.nl/wiki/doku.php?id=policies:security:sysman&rev=1515584841&do=diff Baseline Security System management 11. System management guidelines We have developed guidelines (as recorded in the sysadmin wiki, restricted access) for * Initialize * Decommissioning * Backups * System repairs * Fault management * Log management text/html 2018-01-15T16:38:11+00:00 Anonymous (anonymous@undisclosed.example.com) https://helpdesk.strw.leidenuniv.nl/wiki/doku.php?id=policies:security:web&rev=1516034291&do=diff Web There are several aspects to this service: * Personal webstack: Each user has an area with his home directory that maps to a personal web site denoted by appending the standard institute url with ~username. It can contain any information the user wishes to disclose to the world. text/html 2018-01-05T13:12:37+00:00 Anonymous (anonymous@undisclosed.example.com) https://helpdesk.strw.leidenuniv.nl/wiki/doku.php?id=policies:security:whodoeswhat&rev=1515157957&do=diff List of responsibilities PersonExpertiseErik Deul Linux, WEB office/sytem management tools, Scientific software, Science serversDavid Jansen Linux, Scientific software, MacOS, Science Servers, HPCAart Vos Windows, Lab science, Office automationLeonardo Lenoci