This site is brought to you by the Electrical and Computer Engineering department
How to Avoid Network Quarantines
In order to reduce information security risks, the UT Information Security Office (ISO) conducts daily vulnerability assessments that consist of scanning computers campus-wide for high-risk exposures. Vulnerabilities that present a high risk of exploitation from targeted attacks result in a network quarantine.
Simple steps to avoid network quarantines and reduce downtime.
To ensure your computer receives crucial security patches, please leave it powered on and connected to the network at all times. Leaving devices on and connected allows automated systems to apply important updates outside of normal work hours.
Follow the ECE Linux Kernel Update Reboot Policy. ECE managed Linux systems remain secure, stable, and compliant by applying critical kernel patches in a timely manner.
One of the primary reasons for system quarantines within the ECE department is the installation of Anaconda or Miniconda, often due to the inclusion of vulnerable software packages or failure to keep those packages updated. To prevent this, please use Miniforge as the approved and secure alternative.
Similar to item #3, system quarantines often occur when software packages or environments such as Python, Java, Apache Maven, Gradle, or Apache Log4j are not properly maintained or updated to address vulnerabilities. To mitigate these risks, please ensure these environments and dependent packages are kept up to date or are removed.