Subject: FTP transfer of JEM-X instrument station data


   Dear all,

   as many of you know already, the JEM-X instrument station PC
has been compromised and it's internet connections have been
blocked by the university.

   Since this is the second occasion this has happened with a
Windows PC, the JEM-X team proposes to no longer directly transfer
data to DSRI but instead copy the TM files to a local directory
at ISDC. DSRI is perfectly capable to do the file transfer then
themselves with just a bit more effort than before.

   For a start I have done the following:

* Creation of the directory /unsaved_data/jemx/ipf with write
   access for the world.

* FTP from PC of all the IPF files 040713_0.IPF to 040719_0.IPF.
   Open write access to these files to the world.

   In my opinion we should try to make this or something very similar
the standard procedure for IPF file transfer, does anyone disagree?
If not the following issues should still be resolved:

* Can we avoid possible mistakes by having /unsaved_data/jemx/ipf
   the default directory for operators ftp-ing from isdcsf2?

* Is there a simple way to have the operators create the files under
   Solaris and the JEM-X team delete them, when diskspace becomes
   scarce?

Probably there are some good solutions, but my system knowledge
is too limited to see them immediately.

   Regards,
   Peter


Date: Tue, 20 Jul 2004 11:28:25 +0200
From: "SHAW Simon (ISDC Operations Coordinator)" <simon.shaw@obs.unige.ch>
Subject: Re: FTP transfer of JEM-X instrument station data
To: Peter Kretschmar <peter.kretschmar@obs.unige.ch>
Cc: Carol Anne Oxborrow <oxborrow@dsri.dk>, Juhani Huovelin 
<Juhani.Huovelin@Helsinki.fi>, Niels Lund <nl@dsri.dk>, Niels Joergen 
Westergaard <njw@dsri.dk>, Soren Brandt <sb@dsri.dk>, Stefan Larsson 
<stefan@astro.su.se>, Sami Maisala <Sami.Maisala@astro.Helsinki.fi>, Carl 
Budtz-Joergensen <carl@dsri.dk>, Jerome Chenevez <jerome@dsri.dk>, Silvia 
Mart?nez N??ez <silvia.martinez@uv.es>, Operations <isdc-ops@obs.unige.ch>, 
Shift Team in Barn <shift@isdcmail.unige.ch>, Daniel Rychcik 
<Daniel.Rychcik@obs.unige.ch>


Peter Kretschmar wrote:

> 
> * FTP from PC of all the IPF files 040713_0.IPF to 040719_0.IPF.
>   Open write access to these files to the world.
> 

Surely opening files with world writable access is a really bad idea ?!!

Besides that my only other concern is to make sure that the procedure 
the operators have to do to copy this data does not take significantly 
longer or more effort than what they do at the moment.

Simon



Date: Tue, 20 Jul 2004 11:30:24 +0200 (MEST)
From: Daniel Rychcik <Daniel.Rychcik@obs.unige.ch>
Subject: Re: FTP transfer of JEM-X instrument station data
To: Peter Kretschmar <peter.kretschmar@obs.unige.ch>
Cc: Carol Anne Oxborrow <oxborrow@dsri.dk>, Juhani Huovelin 
<Juhani.Huovelin@Helsinki.fi>, Niels Lund <nl@dsri.dk>, Niels Joergen 
Westergaard <njw@dsri.dk>, Soren Brandt <sb@dsri.dk>, Stefan Larsson 
<stefan@astro.su.se>, Sami Maisala <Sami.Maisala@astro.Helsinki.fi>, Carl 
Budtz-Joergensen <carl@dsri.dk>, Jerome Chenevez <jerome@dsri.dk>, Silvia 
Mart?nez N??ez <silvia.martinez@uv.es>, Operations <isdc-ops@obs.unige.ch>, 
Shift Team in Barn <shift@isdcmail.unige.ch>

Hi all,

In general I agree 100% with all below. I just think that it might be useful,
if you (Soren?) reinstall the second PC with all the instrumentation
software. Right now it contains an "unofficial mirror" of some pirated
Autodesk software (grr, if I only knew the password ;-) and, while not
available from outside, it is not a nice thing to live with..

BTW, when reinstalling, I would suggest just not to set up any gateway
address. This should protect us from the viruses from the University, too.

For the concern of Simon: I would propose to have the files accessible (and
writable) only by isdc_jemx group. Or some other group that I might create
for this occassion.

Daniel


Date: Tue, 20 Jul 2004 11:51:52 +0200
From: Peter Kretschmar <peter.kretschmar@obs.unige.ch>
Subject: Re: FTP transfer of JEM-X instrument station data
To: Daniel Rychcik <Daniel.Rychcik@obs.unige.ch>

   Hi,

   I agree that having world writeable files is not a
safe procedure - this was rather an ad-hoc solution
so the JEM-X team could check their important data.
Let's set up a clean solution soon and implement it
as clear procedure.

   Regards,
   Peter

Date: Thu, 22 Jul 2004 10:14:44 +0200
From: Søren Brandt <sb@dsri.dk>
X-Accept-Language: en
MIME-Version: 1.0
To: Peter Kretschmar <peter.kretschmar@obs.unige.ch>
Subject: Re: FTP transfer of JEM-X instrument station data

Folks,

We agree with the procedures outlined by Peter (as it was our own
suggestion). It is easy for us to do the ftp from ISDC to DSRI.

The JEM-X office PC may be shut down until it is cleaned, and it is
ok for the blocking from the outside of both 106 and 107 to remain
in effect. We (I) will restore/clean the office PC, as we want a
backup machine to the Instrument Station.

Just let us know if there are changes to the directories and 
permissions mentioned in Peters mail.

Søren