Division of Information and Communication Sciences

Local Navigation

• Home
• News & Events
• About Division
• Depts & Centres
• Undergraduate
• Postgraduate
• Research
• Industry
• Schoolies
• Alumni
• Site Search
•  
• CTS Support

• Student
• Staff
• Projects
• Account Management

•  
• Staff Notes

• Help Desk
• Accounts
• Email
• Printing
• Wireless
• Computing Labs
• MSDNAA
• CTS Services

•  
• Employment
• Staff Directory
• Intranet

CTS Policies

Service Maintenance & Availability

CTS seeks to maintain IT availability and capacity to adequately support the teaching and research responsibilities of the division. As our servers, and the services they provide, are critical to the daily operations of the division, the maintenance of the supporting hardware, software and infrastructure have become a high priority.

In order to meet demand, maintenance and especially security issues, there needs be time allocated during service maintenance where services may be unavailable. Such downtime will be scheduled during low peak times to minimize the impact of service disruptions. Notifications of such maintenance will be publicised via e-mail and web sites.

We currently implement a monthly schedule maintenance outage on the first weekend of each month. E-mail notifications are usually sent out during the preceding week.

However, there may be times where services may be disrupted due to unavoidable circumstances such as power failures, equipment failures or urgent security situations such as active virus infections, denial of services attacks, etc. Such events are usually unavoidable and unforeseeable. However, CTS will endeavour to establish services as soon as we become aware of such events subject to available time and resources.

Email Policy

Email was originally designed to use a best effort delivery method to send simple text messages. It was never designed as a guarantee delivery system or to send multi megabytes files. If a user sends an email it does not guarantee the recipient received or even read the email. While several attempts have been made to extend the mail protocol to handle such situations, not all email user agents or message transfer agents support all of them or are even standards compliant.

The volume of email handled by our email infrastructure places limits on what can be deemed practical for email to continue to function and to support a common variety of message transfer and delivery agents. The following limits are placed on all email passing through the division. If any message exceeds any of the following conditions, the email will not be delivered:

• Messages that are grater than 20 MB's.
• Attachments that take more than 60 seconds to extract.
• Attachments that contain more than 10 levels of nested containers.
• Attachments where one file extracts to more than 20 MB's in size.
• Attachments where the cumulative size of all extracted files exceeds 25 MB's.
• Attachments where the number of files extracted exceeds 500.
• Attachments with the following suffixes will be removed:
  .ad .ade .adp .asp .bas .bat .chm .cmd .com .cpl .crt .dll .exe .hlp .hta
  .inf .ins .isp .js .jse .lnk .mdb .mde .msc .msi .msp .mst .pcd .pif .reg
  .scr .sct .shb .shs .url .vb .vbe .vbs .vsd .vss .vst .vsw .ws .wsc .wsf .wsh

The above limits should be sufficient to handle the bulk of most emails without any user intervention. If messages exceed any of the above condition, try resending attachments separately, reducing the size of the message, or placing the attachments in your html directory and email the recipient the URL link instead.

File Systems Access

All accounts reside on either the main divisional staff or student file servers. The main file servers are primarily for supporting basic services such as web publishing, email delivery and access, Windows and Unix file sharing, etc. These file systems are exported to other application servers from which users have access to both account files and locally installed applications. Users should access their accounts from these application servers. Users are discouraged from logging on to or running applications on the main file servers.

Access to these files systems are limited to divisional or departmental servers administered by CTS. As these file systems contain important and vital information for the daily activities of all departments and centers within ICS, security is a major concern. Access to these file systems is not allow on servers which CTS has limited or no administrative control. These file systems are not available to individual personal computers.

Limited access is available to individual personal accounts via such services as Samba shares. This allows access to individual directories instead of entire departmental file systems. Users should consult documentation on the CTS web site and available OS documentation on how to properly and securely access these file shares.

Web Application Hosting

The advent of simple web applications which can be easily download and installed in a user's personal cgi-bin / html directory are becoming the latest method for hackers to circumvent existing establish security measures in our network.

These web applications, such as PHP and Python applications, can be downloaded and installed without any CTS intervention or knowledge. These applications are subject to exploits and hacking attempts which may lead to compromising all accounts and/or services within division servers.

As CTS may not be aware of which or what applications users may have installed, user should notify CTS of any such third party application they may be using and must keep up to date with any related upgrades, patches or vulnerabilities. CTS can notify users of any know CERT advisories provided CTS is informed of which applications are installed and by whom. However, users are ultimately responsible for any such applications and their proper installation and usage.

Database Server

CTS provides ICS users with access to a database facility, currently a MySQL server. Access is provided under the following conditions:

• Users should notify CTS of the purpose of their database, any related applications used with their database and who would need access to their database.
• Once the database is created by CTS, users are granted all rights to their database.
• Users do not have rights to create new databases. Additional databases can be created on request.
• Users are responsible for regular maintenance, repair and backups of their databases.
• Users are responsible for installation, maintenance and updates of all related database applications.
• Users should be aware of outstanding security issues related to their applications and take any necessary precautions to keep both their databases and the database server secure from potential misuse or malicious damage.
• Notifications of server updates or upgrades will be sent to users prior to any changes. Please notify CTS if any changes adversely affect your databases or applications.
• Users are responsible for checking their applications for any incompatibilities with our server.
• If you no longer need to use the server, please drop your database and notify CTS for account removal.
• As this server is a division wide shared resource, users should not use this server to host extremely large databases or compute intensive applications.

Domain Hosting

The division currently hosts all the domains within its subnets as delegated to it from our parent domain provider, ITS. We can host additional domains provided they are within the Macquarie University *.MQ.EDU.AU domain. However, in the interest of security and maintenance, only departmental or interdepartmental groups would be considered for any new domains. Domain should also be related to the primary educational or research goals of the division.

We can not support any additional external domains. Groups, commercial entities or users who plan to create or publish publicly accessible material under such domains should first investigate the costs and types of service involved by external companies or related organizations who can provide such services. Groups should check if their requirements can be met by hosting under their existing departmental web or e-mail infrastructure.

Which ever option is chosen, groups should consult with CTS prior to setting up an external hosting arrangements or domain names and preferable in the early stages of any proposal or considerations.

CTS can provide supporting maps or redirects to external domains via HTTP (Web) and MX (E-mail) records. However, consideration should be given to the number and types of external domains users really need as each new domain adds to the complexities of configuring web servers, authentication, mail routing, processing, maintenance and impact on all divisional services.

Server Room Facilities

Rapid and substantial grow of several departments within the division have begun to push the limits of the divisions server facilities. As a result of limitation on air conditioning, power distribution and rack equipment space, the following policies are to insure continued adequate and fair infrastructure support for all department and centres within the division:

• Any groups planning purchases of additional servers should check with CTS concerning space, power and maintenance requirements. This must be done prior to purchase and preferable early in the equipment proposal stages!
• Equipment purchases must seriously consider the additional cost of maintaining the server after purchase.
• Departments need to nominate a contact person who will be responsible for user support and backup of relevant data for each server.
• Considerations must include who will be responsible for setup, maintenance, patching software and operating system plus security.
• Only divisional or departmental resources should be housed within the server room.
• If rack space continues to be an issue, servers providing departmental or divisional wide resources will have preference over all other servers.

CTS currently have responsibilities for most division wide servers and services. However, as the number of servers plus complexities of different software and operating systems increase, CTS has limited time and resources to manage additional server responsibilities to its already existing commitments. CTS will continue to provide assistance when and if necessary but actual maintenance should be the responsibility of the respective departments or groups which purchased the equipment.