Brightworks staff mistakenly accessed the production system Dec. 1, 2016. They pledge not to make that mistake again. Email thread on this page.
------------------------------------------
From: Chemistry IT Helpdesk
Sent: Friday, December 2, 2016 9:40 AM
To: David R. Neish <drn2>; Alan M. Sharafi <ams834>
Cc: Chemistry IT Helpdesk <chemit>
Subject: INC000001827365 Stockroom - Quickbooks server remote connect
David and Alan,
Taimur, at Brightworks, acknowledged his recent mistake of connecting to the production QB server. He pledges to be more careful in the future (below).
Kudos to Michael for having detected the mistake and reporting it.
I will note this occurrence after I send this email at our wiki page, accessible by CU folks only:
https://confluence.cornell.edu/x/kppRF
That will be useful if there ever is a repeat of the mistake. Let's hope not, of course. -Oliver.
------------------------------------------
From: Taimur Gibson [mailto:help]
Sent: Friday, December 2, 2016 9:23 AM
To: Oliver B. Habicht
Subject: Ticket#92412/CUChem/Non-authorized Quickbooks server remote connection to production system -- has been updated
(...)
Discussion:
Fri 12/2/2016/9:23 AM EST/ Taimur Gibson-
Oliver,
So sorry about this - I was intending to access the testing server and I must have accidentally RDP'd to the wrong host and disconnected instead of logging out. I'll be more careful going forward and will coordinate access if I do need to log into the production server.
Taimur
________________________________________
Thu 12/1/2016/1:04 PM EST/ Oliver Habicht
Brightworks,
Apparently you seemed to have accessed our PRODUCTION system without prior permission. See report, below, for what we understood occurred. Please do coordinate such access before actually doing so. You left yourselves logged in by disconnecting, not logging out.
This came to our attention this morning when we had to respond to a problem by a staff member accessing that system (also below). Your access may, or may not, have affected.
Thank you for understanding, -Oliver.
------------------------------------------
From: Michael E Hint
Sent: Thursday, December 1, 2016 9:14 AM
To: Chemistry IT Helpdesk <chemit>
Subject: RE: INC000001827365 Stockroom - Quickbooks server remote connect
Oliver,
Investigating Alan's login problem this morning, I discover that it appears Brightworks connected to the production Windows server at 3:08pm yesterday and left their login going, only disconnecting.
[...]
I don't know exactly what went wrong with the AS-CHM-StockQB remote login account, but I had to reset the password back to exactly what we had it recorded as in order for the account to work for Alan. Maybe just a fluke, but the timing relative to Brightworks makes me suspicious.
Michael