首頁‎ > ‎

公告欄


2021.02.25 Google儲存空間政策異動, 現在階段請先檢查自己的使用空間並刪除大型檔案

張貼者:2021年2月25日 上午12:45黃景煌   [ 已更新 2021年3月22日 下午8:52 ]

  1. Google公告自2022年7月起, Google Workspace for Education Fundamentals(即NCNU cloudmail) 總儲存空間限縮為100TB, 供所有使用者共同使用。 
  2. 此一措施影響全球所有使用Google Workspace for Education的教育機構, 校方正收集各方意見, 研議因應措施.
  3. 經查至2021/03止, 學生cloudmail總使用量超過100TB數十倍, 其中雲端硬碟之使用量佔總使用量90%以上, 
  4. 請先檢查自己的使用空間, 進行資料備份, 避免屆時資料遺失之可能, 詳細操作說明請參考
        cloudmail首頁‎ > ‎常見問題集(FAQ)‎ > ‎c. cloudmail / gmail問題‎ > ‎
            0029. 備份及移除Google Drive大型檔案
            0030. 查明自己使用了多少Google儲存空間
  5. 針對Google此項政策更新,本校因應辦法將待Google細部政策公告後,研擬配套措施另行公告。
  6. 由目前各校公告來看, 主要朝以下2個方向規劃:
    a. 縮減使用者空間  (暨大目前共有4萬多個帳號, 每年會增加近千個帳號, 若以100TB/5萬個帳號計算, 每個帳號可使用2GB)
    b. 縮減服務(如關閉佔暨大90%以上空間的google drive及photo服務)
  7. 歡迎透過計網中心諮詢委員會, 校友中心, 校友會, 學生會等提供意見, 然本服務屬Google公司免費提供,本校實無管控權力,惠請知悉,請多包涵

Google公告:
各校公告:
註: 興大, 成大及高醫大的校友GWE帳號都是由校友向學校校友中心或校友會個別申請的, 暨大是直接給每個校友一個GWE帳號

2021.02.22 109學年第2學期學生email帳號建立完成(第4批)

張貼者:2021年2月21日 下午11:28黃景煌

2021.02.22 109學年第2學期學生email帳號建立完成(第4批)
  1. email帳號:   's'+學號(如:s109456789),
    email位址:   email帳號@mail
    1.ncnu.edu.tw
    (如:s109456789@mail1.ncnu.edu.tw)
  2. 請依 電子郵件啟用程序進行email帳號啟用(含密碼變更), 否則無法登入學生cloudmail. 啟用email帳號後請直接"https://cloudmail.ncnu.edu.tw -> 學生cloudmail登入, 收發email.
  3. 除非您百分之百確定修改的後果, 請勿對webmail任何設定做修改.
  4. 如有設定及使用上的問題在上資訊電信設備故障報修前請先查詢學生手冊及新版cloudmail網站之常見問題集.
  5. 忘記電子郵件密碼請參考0006. 忘記電子郵件密碼怎麼辦?方案1~4(方案1優先).
  6. 忘記校務系統密碼又未啟用電子郵件請參考0006. 忘記電子郵件密碼怎麼辦?方案3,4.
  7. Android手機設定請參考0001. 在Android手機上使用gmail app登入cloudmail(含Gmail、雲端硬碟.
  8. iPhone手機設定請參考0002.在iphone手機上使用gmail app登入cloudmail.
  9. 校園無線上網及SSL VPN.

2021.02.17 109學年第2學期學生email帳號建立完成(第三批)

張貼者:2021年2月16日 下午11:39黃景煌

2021.02.17 109學年第2學期學生email帳號建立完成(第三批)
  1. email帳號:   's'+學號(如:s109456789),
    email位址:   email帳號@mail
    1.ncnu.edu.tw
    (如:s109456789@mail1.ncnu.edu.tw)
  2. 請依 電子郵件啟用程序進行email帳號啟用(含密碼變更), 否則無法登入學生cloudmail. 啟用email帳號後請直接"https://cloudmail.ncnu.edu.tw -> 學生cloudmail登入, 收發email.
  3. 除非您百分之百確定修改的後果, 請勿對webmail任何設定做修改.
  4. 如有設定及使用上的問題在上資訊電信設備故障報修前請先查詢學生手冊及新版cloudmail網站之常見問題集.
  5. 忘記電子郵件密碼請參考0006. 忘記電子郵件密碼怎麼辦?方案1~4(方案1優先).
  6. 忘記校務系統密碼又未啟用電子郵件請參考0006. 忘記電子郵件密碼怎麼辦?方案3,4.
  7. Android手機設定請參考0001. 在Android手機上使用gmail app登入cloudmail(含Gmail、雲端硬碟.
  8. iPhone手機設定請參考0002.在iphone手機上使用gmail app登入cloudmail.
  9. 校園無線上網及SSL VPN.

2021.02.04 109學年第2學期學生email帳號建立完成(第二批)

張貼者:2021年2月5日 上午1:04黃景煌

2021.02.04 109學年第2學期學生email帳號建立完成(第二批)
  1. email帳號:   's'+學號(如:s109456789),
    email位址:   email帳號@mail
    1.ncnu.edu.tw
    (如:s109456789@mail1.ncnu.edu.tw)
  2. 請依 電子郵件啟用程序進行email帳號啟用(含密碼變更), 否則無法登入學生cloudmail. 啟用email帳號後請直接"https://cloudmail.ncnu.edu.tw -> 學生cloudmail登入, 收發email.
  3. 除非您百分之百確定修改的後果, 請勿對webmail任何設定做修改.
  4. 如有設定及使用上的問題在上資訊電信設備故障報修前請先查詢學生手冊及新版cloudmail網站之常見問題集.
  5. 忘記電子郵件密碼請參考0006. 忘記電子郵件密碼怎麼辦?方案1~4(方案1優先).
  6. 忘記校務系統密碼又未啟用電子郵件請參考0006. 忘記電子郵件密碼怎麼辦?方案3,4.
  7. Android手機設定請參考0001. 在Android手機上使用gmail app登入cloudmail(含Gmail、雲端硬碟.
  8. iPhone手機設定請參考0002.在iphone手機上使用gmail app登入cloudmail.
  9. 校園無線上網及SSL VPN.

2021.01.27 109學年第2學期學生email帳號建立完成(第一批)

張貼者:2021年1月27日 下午4:24黃景煌

2021.01.27 109學年第2學期學生email帳號建立完成(第一批)
  1. email帳號:   's'+學號(如:s109456789),
    email位址:   email帳號@mail
    1.ncnu.edu.tw
    (如:s109456789@mail1.ncnu.edu.tw)
  2. 請依 電子郵件啟用程序進行email帳號啟用(含密碼變更), 否則無法登入學生cloudmail. 啟用email帳號後請直接"https://cloudmail.ncnu.edu.tw -> 學生cloudmail登入, 收發email.
  3. 除非您百分之百確定修改的後果, 請勿對webmail任何設定做修改.
  4. 如有設定及使用上的問題在上資訊電信設備故障報修前請先查詢學生手冊及新版cloudmail網站之常見問題集.
  5. 忘記電子郵件密碼請參考0006. 忘記電子郵件密碼怎麼辦?方案1~4(方案1優先).
  6. 忘記校務系統密碼又未啟用電子郵件請參考0006. 忘記電子郵件密碼怎麼辦?方案3,4.
  7. Android手機設定請參考0001. 在Android手機上使用gmail app登入cloudmail(含Gmail、雲端硬碟.
  8. iPhone手機設定請參考0002.在iphone手機上使用gmail app登入cloudmail.
  9. 校園無線上網及SSL VPN.

2020.12.14 注意假冒校長等主管的詐騙郵件 (2020.12.16更新)

張貼者:2020年12月14日 上午12:26黃景煌   [ 已更新 2020年12月16日 上午1:37 ]

信件資訊
------------------------
From:SU,Yuh-long<exec.director72@gmail.com>
To:a8351<a8351@ncnu.edu.tw>
Date: Sat, 12 Dec 2020 06:35:12
Subject: Work
I need a favor from you please email me back as soon as possible. 


SU,Yuh-long
President 


Sent from my iPad
--------------------
國內外大學都有收到這類詐騙信,

如果您收到這信, 請直接刪除.

如果您有回信, (1)請勿提供任何您和銀行往來有關的資訊 (2)請忽略任何和這網路釣魚信相關的訊息.



詐騙手法如下:


暨大老師回覆第一封詐騙信後, 收到的第二封詐騙信, 很清楚開始騙錢了!!!

From:****-**** ****<groupleader.mail@gmail.com>
To:****<****@ncnu.edu.tw>
Date: Wed, 16 Dec 2020 16:34:41
Subject: Re: Are you available?

Dear ****, I'm sending mail for a favour.

Thank you for getting back to me.
I need you to get some gift cards from any store around now.There are some prospects i need to send Gift Cards today but I can’t do that right now because I’m currently busy in the Hospital attending to my friend who's critically ill .Let me know if its possible to get them right now, so i can tell you which products i would need and what amount. I’ll reimburse you.
Thanks.



****-**** ****


---

http://medicine.buffalo.edu/offices/omc.host.html/content/shared/www/ubit/news/2018/business-email-compromise-scam-ub-employee-impersonation.detail.html

Scammers are targeting people at UB by sending email claiming to be someone associated with UB--commonly an instructor, advisor or work supervisor--and asking them to make purchases or complete other tasks on their behalf.


Here is a recent example of one of these email exchanges--the full names of UB employees have been removed:

From: Ruth ----
Sent: Friday, November 9, 2019 1:51 PM
Subject: Hi

Could you please email me back? I need a favor.

Ruth

Sent: Friday, November 9, 2019 1:57 PM
Subject: RE: Hi

Hi Ruth,

Of course – how can I help?

Sent: Friday, November 9, 2019 3:10 PM
Subject: Re: Hi

Good to hear from you, hope all is well with you? I need to get three iTunes gift cards for my niece, Its her birthday but I can't do this now because I'm currently traveling. Can you get them for me from any store around you? I'll pay back next week when I get back home.

Ruth

The scammer impersonates a real UB employee in the email’s “From:” field. The email exchange typically begins by asking if the recipient is in the office.

In either the same message or a follow-up message, the sender may claim to be busy in a meeting or traveling, and they cannot talk on the phone, but need the recipient to make a last-minute purchase, click a link to read an article or complete another urgent task.

The scammer typically requests that the recipient make a purchase of some sort, whether buying gift cards, paying an invoice or some other plausible purchase on their behalf. They may also offer you a job, which typically requires you to give them your bank information.

This is a type of business email compromise scam. The FBI has more information about business email compromise scams on their website.

---

https://www.scd.org/news/dont-feed-phish-email-and-texting-scam-rise

The Diocese has received multiple reports from parishioners receiving scam emails from an imposter who creates an email address using the pastor's name and then sends a phony email asking for money in the form of gift cards. The scam has recently evolved and parishioners are now receiving text messages from the imposter/scammer using the pastor's name and a local telephone number.

Typically, the scam is initiated when the parishioner receives a casual email or text message from the imposter with a subject like, "Many Blessings." The body of the email is written something like, "Good morning, how are you doing?" "I need a favor from you, email me as soon as you get this message." Then the email is signed using the pastor's name.

Unbeknownst to the recipient, he or she replies to an address that is not the pastor's, but an imposter's email address. This type of social engineered attack is commonly referred to as Phishing or CEO Fraud (the latter because the imposter uses the name of a person you trust or have a close relationship and plays on a sense of urgency). The next email usually asks the parishioner to buy gift cards and to transmit the photo of the gift cards with the numbers revealed to the imposter.

---

https://www.nbcnews.com/better/lifestyle/can-you-do-me-favor-here-s-how-protect-yourself-ncna1060201

It was just before Christmas last year when Robin received an email from the CEO at her consulting company in North Carolina. The email said he was out of town — which he was — and that she should buy gift cards for corporate holiday presents. The email also instructed her to email the information off the back of each card.

Robin did what any good employee would do — she bought the gift cards (using her corporate credit card) and emailed the card numbers and PINs, as instructed.

Later that day, Robin discovered the request to buy those gift cards was not from her boss; it was from hackers who had “spoofed” his email. Robin had emailed the card information to the scammers, who quickly drained the $10,000 that she had loaded on them.

“I was so upset that I just burst into tears and called my mom, even though I’m almost 35 years old,” Robin told NBC News BETTER.

To make matters worse, her company said she was responsible to eat the loss.

----------------


參考資訊


https://net.nthu.edu.tw/netsys/mailing:announcement:20201008_01 (清華大學)

https://www.itsc.cuhk.edu.hk/tc/newsdetails/phishing-alert-request-7/     (香港中文大學)

https://www.unh.edu/it/news/2020/06/phishing-email-subject-request-0     (Univ. of New Hampshire)

http://medicine.buffalo.edu/offices/omc.host.html/content/shared/www/ubit/news/2018/business-email-compromise-scam-ub-employee-impersonation.detail.html (Univ. of Buffalo) 

https://sites.google.com/a/mail.ncnu.edu.tw/ems/home/announce/20201026zhuyijiamaoxiaoneizhuguanhuolaoshidezhapianyoujian (暨南大學)



 

2020.12.12 CentOS重大改變

張貼者:2020年12月11日 下午9:54黃景煌   [ 已更新 2021年1月11日 下午11:19 ]

The CentOS project recently announced a shift in strategy for CentOS. Whereas previously CentOS existed as a downstream build of its upstream vendor (it receives patches and updates after the upstream vendor does), it will be shifting to an upstream build (testing patches and updates before inclusion in the upstream vendor).

Additionally, support for CentOS Linux 8 has been cut short, from May 31, 2029 to December 31, 2021.

Rocky Linux is a community enterprise operating system designed to be 100% bug-for-bug compatible with America's top enterprise Linux distribution now that its downstream partner has shifted direction. It is under intensive development by the community. Rocky Linux is led by Gregory Kurtzer, founder of the CentOS project. There is no ETA for a release. Contributors are asked to reach out using the communication options offered on this site.

Rocky Linux aims to function as a downstream build as CentOS had done previously, building releases after they have been added by the upstream vendor, not before.


補充


Scientific Linux是一款由費米國家加速器實驗室(Fermilab)與歐洲核子研究組織(CERN)合作開發的Linux發行版。 開發上是以Red Hat Enterprise Linux作為基礎,並且期望「盡其所能地接近商業發行版的作業系統」[1]2019年4月,開發團隊宣布其將不會再繼續開發新版本,但對6.X與7.X版的維護仍將持續到它們的生命週期結束。此後費米國家加速器實驗室將會使用CentOS進行8.0的部署[2]

2020.10.26 注意假冒校內主管或老師的詐騙郵件

張貼者:2020年10月28日 上午1:23黃景煌   [ 已更新 2020年10月28日 上午2:16 ]

近日有些郵件使用者收到假冒本校主管或老師名義,透過 Gmail 系統發信, 其它學校也有類似情形(註一),例如:

(1)主旨為「Are you available?」之類;信中內容為「I need you to run a quick task for me.」之類,寄信人為directord567@gmail.com,professoremail299@gmail.com,principalinvestigator832@gmail.com 

(2)主旨為「Request」之類;信中內容為「I need a favor from you kindly email me back as soon as possible.」之類,寄信人為prfssrmail@gmail.com

此為常見的詐騙手法,這也是每年全國及教育部都會辦理 '防範惡意電子郵件社交工程演練'的原因(109年演練至11月底止), 以下列出一些注意事項供使用者參考:

  1. 近兩三週此類信件經查均是透過 Gmail 系統發出,非由中心的郵件系統寄出,故請各位不須驚慌,如收到類似之 email,請置之不理並刪除

  2. 此類信件可能含有外部連結的圖片或附檔,請不要下載以避免遭植入惡意程式或病毒

  3. 如有使用者發現自己名稱遭冒用,可向發信單位提出檢舉,或可阻斷來源

  4. 如果不明信件中有附上連結網址,請不要點擊郵件中的網址,以免被偽造的網址所欺騙(註二),若需連結該網址時,請自行輸入網址。

  5. 如果不確定郵件中的附件安全性,請不要隨意開啟或執行,以免導致中毒或資料外洩。

  6. 電子郵件來源判斷不易,即使看到署名是親朋好友或學校長官給您的郵件,若含有不明寄件地址也極可能是詐騙郵件。

  7. 若有對郵件有疑問,請直接打電話或寫信向寄信單位/人員求證,但電話號碼或 email address 一定要自行查證,不要用信件所提供的電話號碼或 email address

  8. 本校電子郵件安全宣導資料請參考cloudmail.ncnu.edu.tw左側欄'電子郵件安全'區塊

註一)https://net.nthu.edu.tw/netsys/mailing:announcement:20201008_01

註二)比惡意的相似網址更難防的punycode phishing attack

註三)http://admdmt.ccu.edu.tw/fraud/data/1040429.pdf


 

資料來源: http://admdmt.ccu.edu.tw/fraud/data/1040429.pdf

標題:留意偽冒 Gmail「已攔阻可疑登入」釣魚信件 副標題:留意偽冒 Gmail「已攔阻可疑登入」釣魚信件 發布時間:2015/4/10 下午 12:02:38 刑事警察局 165 反詐騙諮詢專線近期接獲民眾檢舉,指稱其 Google 電子郵件(或稱 Gmail)接獲疑似假冒以 Gmail 公司名義發送之釣魚信 件,內容為「已經成功攔阻帳號免遭到駭客入侵,並明確標明入侵時 間、IP 與地點」,要求郵件使用者點選信件下方【重設密碼】選項, 實為竊取民眾帳號、密碼。由於近年 Google 服務跨越電子郵件、行 動電話作業系統、行動軟體(Google Play)及電子錢包(Google Wallet) 等領域,均由帳號、密碼控管,遂成駭客覬覦目標。 本次所發現之網路釣魚信件,不僅可躲過 Gmail 系統垃圾信攔截偵 測,且利用 Gmail 電子郵件本身有攔截異常登入行為,透過變造類似 內容來取信民眾,此手法早期係由外國駭客產生並演變,當民眾 Gmail 帳號密碼遭到竊取後,駭客便利用該帳號設定之信用卡支付購買商品 (如 APP 軟體或遊戲寶物等)或竊取電子郵件內容向第三人發送詐騙 信件,目前 165 反詐騙諮詢專線雖未接獲因 Gmail 遭竊取後衍生之詐 騙個案,惟仍呼籲民眾應多注意可疑電子郵件,避免受騙。 當民眾 接獲異常登入訊息之電子郵件,首先可透過 Gmail 電子郵件瀏覽頁面 最下方【上次帳戶活動時間】及點選【詳細資料】,以瞭解最近登入 的 IP 與使用瀏覽器情形,核對帳戶是否遭到入侵,另外也可使用 Gmail 所提供之免費『兩步認證』工具,透過帳號、密碼外之第三道 動態密碼安全機制,防止遭到入侵。另外若民眾發現疑似接獲釣魚電 子郵件時,可前往官方網站 (https://support.google.com/accounts/answer/6063333?hl=zh-H ant) 查證並對於惡意電子郵件進行申告停權,切莫未經查證貿然連結陌生 網址並輸入個人帳號、密碼,造成後續隱私及財產權遭受侵害。 近 期 165 反詐騙諮詢專線針對最新詐騙手法建立多元宣導管道,民眾可 透過 165 LINE 官方宣導帳號(@tw165)、165 反詐騙臉書粉絲專頁 (https://www.facebook.com/165bear) 或 165 官方網站 (www.165.gov.tw)查詢最新訊息,以提升全民反詐騙意識,降低被害 風險。(本項資訊下載自內政部警政署反詐騙網站-新聞快訊;若有任 何與詐騙相關的問題亦歡迎撥打內政部警政署 165 反詐騙專線或本 校值勤專線(05)2721114 查證)。 標題:好心反被騙!網路代購成人頭帳戶 男出面控訴詐團 沒良心 副標題:好心反被騙!網路代購成人頭帳戶 男出面



2020.10.12 近日釣魚郵件資訊注意

張貼者:2020年10月12日 上午12:37黃景煌

資料來源: https://www.twcert.org.tw/newepaper/cp-65-4004-876b1-3.html

TWCERT/CC近日接獲多起釣魚信件通報,該信件標題採已匯款多少金額等引發收件者注意,並附上正確國內企業資訊之簽名檔等資訊,誘使使用者下載夾帶木馬病毒的附檔確認相關資訊。經分析該惡意程式會紀錄鍵盤、麥克風及螢幕截圖並回傳至惡意中繼站。此惡意程式會偵測虛擬環境,若於虛擬環境則無動作進而躲避檢查。相關流程如圖示。據了解該釣魚郵件已行之有年,定期會寄送一波進行釣魚行動,請企業進行防範並同時向員工進行郵件的資安宣導避免誤載附檔,而受到監視,形成企業安全漏洞。



2020.09.08 Google Meet 2020/10/01起之限制

張貼者:2020年9月7日 下午9:55黃景煌   [ 已更新 2020年9月7日 下午9:56 ]

After September 30, 2020, your access to Meet advanced features is changing:

  • Number of participants: You can create meetings with up to 100 participants.
  • Recordings: 
    • You can continue recording meetings as you did during the promotion until temporary recordings become available in late 2020. Temporary recordings let G Suite for Education meeting organizers record meetings and share recordings within their organization. Temporary recordings expire 30 days after they are recorded. Also, temporary recordings can't be shared outside the meeting organizer's domain or downloaded, even if it's within the 30-day sharing period
    • Meetings recorded during the promotional period remain in the meeting organizer’s Drive.

  • 註: meet發起人要另外學用螢幕錄影程式(如OBS Studio,免費)錄影.
  •            元智大學OBS Studio教學
  •          台南應用科技大學OBS Studio教學

  • In-domain live streaming: You won’t be able to live stream meetings.


1-10 of 153