Possible Action Required for Managers of Devices Which are Accessed via SSH from Outside the Yale Network

March 25, 2019

*** This change was postponed. ***

On Thursday, March 28, from 9:00 - 9:30 a.m, we will be updating a firewall rule which allows individuals to access certain Yale devices from outside the Yale network in an effort to continuously vet the University’s firewall rules.

Why?

In an effort to continuously vet and maintain the university’s firewalls, we will be updateing a firewall rule which enables certain devices to be accessed using Secure Shell protocol (SSH) from outside the Yale network.

What’s changing?

The Information Security team is updating the firewall rule which enables the use of Secure Shell protocol (SSH) to access certain devices from outside the Yale network. In order to maintain best security practices, Information security is looking to update the list of devices to only include active devices.

Possible action required:

  • If you currently utilize SSH to access Yale devices from off-campus, please review the list through ServiceNow Knowledgebase article KB0024199 (requires login) to see if you would be impacted.
  • If you manage a device which can be accessed via SSH from outside the Yale network and are unable to view the list, please contact the ITS Help Desk at 203-432-9000 to inquire if your device is impacted.

If a device that you manage is on the list and requires SSH access from an external network, please submit an exception request, including a business reason, to information.security@yale.edu.

If you have additional questions, please contact Information Security at information.security@yale.edu or the ITS Help Desk at 203-432-9000.