Context Navigation

Changes between Version 13 and Version 14 of Policy

Timestamp:: Aug 27, 2013 3:13:46 PM (11 years ago)
Author:: jhickey
Comment:: --

Legend:

: Unmodified
: Added
: Removed
: Modified

Policy

-                      v13
+                      v14
  Deter is a shared resource.  We expect users to be good citizens by not abusing or wasting the resources we make available to them for free.  We ask that you:
  * '''Read the tutorial''' -  [wiki:Tutorial It is right here] - and give us feedback!
+* '''Use good passwords''' - We are a computer security testbed, so please use a strong password.  You may be reading this because you were told that your new password, 'qwerty1234', is in the dictionary.  We don't mean the Oxford English Dictionary here.  What we use is a large list of dictionary words *combined* with actual passwords that have been found in the wild.  For example, the [http://arstechnica.com/security/2010/01/32-million-passwords-show-most-users-careless-about-security/ RockYou hack] ended up revealing the unencrypted passwords of 32 million people (and about 14 million unique passwords).  Since this list is one of the go-to lists for the bad guys, we use it too.  This means that a lot of passwords that seem clever or obscure fail our test because someone else thought up the same thing.  The longer your password, the less likely it is to be in the dictionary.  Try combining multiple words mixed with numbers and symbols.  That way you get an easy to remember password that also will pass our dictionary checks.
+ * '''Do not share accounts''' - We will close accounts that we suspect to be shared.
+ * '''Use good passwords''' - We are a computer security testbed, so please use a strong password.  You may be reading this because you were told that your new password, 'qwerty1234', is in the dictionary.  We don't mean the Oxford English Dictionary here.  What we use is a large list of dictionary words *combined* with actual passwords that have been found in the wild.  For example, the [http://arstechnica.com/security/2010/01/32-million-passwords-show-most-users-careless-about-security/ RockYou hack] ended up revealing the unencrypted passwords of 32 million people (and about 14 million unique passwords).  Since this list is one of the go-to lists for the bad guys, we use it too.  This means that a lot of passwords that seem clever or obscure fail our test because someone else thought up the same thing.  The longer your password, the less likely it is to be in the dictionary.  Try combining multiple words mixed with numbers and symbols.  That way you get an easy to remember password that also will pass our dictionary checks.
  * '''Swap out your experiment it is finished''' -  People forget to do this all the time.  We do have an idle detection mechanism, but it is not perfect and may keep thinking your experiment is active long since you have collected your results, published your paper, and achieved tenure.  Please log back in and free up your nodes so that other researchers can use them.
  * '''Do not abuse the no idle-swap feature''' -  Only turn off idle swap if there is a true need.  Take the time to script the setup process for your experiment or create custom disk images.
 …
   * '''Let us know if you are done with your project''' - Let us know if you no longer need your project and we'll clean it up for you!
- * '''Do not share accounts''' - We will close accounts that we suspect to be shared.
  * '''Talk to us if you have a need''' - We are here to help you.  Although we can't help you write your code, we often can provide useful suggestions about running experiments on the testbed.