CIS Network
Security Team

Security for the campus network is maintained by the CIS Network Security Team. We are part of the Network Group within Computing and Information Services. Our main responsibilities include maintaining the campus firewall, incident investigations, and providing information and notification on viruses, attacks, and vulnerabilities.

The best way to contact us is by email at firewall@tamu.edu. During the year 2007, we received and processed 14,313 messages. Of those, 2,775 were firewall requests. In case of an after-hours security incident, please contact Help Desk Central at (979) 845-8300.


May 15, 2008
SSH Attacks on the Rise

There has been an increase in brute force SSH attacks on machines on campus. This is also being reported by SANS in their Handler's Diary. If you have port 22 open through the campus firewall for any of your machines, this would be a good time to review the security settings on the server.


07 May 2008
New phishing scam on campus

If you receive e-mail asking you to "CONFIRM YOUR TAMU.EDU EMAIL ACCOUNT IMMEDIATELY!!!", please delete it. As a reminder, we will never ask you to e-mail us your password.

Update 6:00pm
Another phish has been reported, "*****Help Maintainance*****".

As a reminder, please never send sensitive information over e-mail. Thank you for reporting these scams to us.


Possible Change to Default Campus Firewall Rules


Past TAMU Security Announcements

TAMU Security Topics

Incident Detection and Security Tools

TAMU Security Tools and Utilities

  • Firewall.tamu.edu - View current firewall settings for hosts you own
  • NetSQUID - Information on boxes deployed in residence halls to automatically isolate virus and worm infected machines. This is also now available for campus administrators.

The following tools were developed by the CIS Network Group to help provide security for campus administrators:

  • Drawbridge firewall package - A powerful bridging IP packet filter
  • Tiger - A set of scripts that will scan a Unix system searching for security problems
  • Netlog - A set of Intrusion Detection monitoring programs

The CIS Network Security Team currently provides a scanning tool which allows you to scan your host to check for http vulnerabilities. In the future, we plan to expand this to also allow you to scan for vulnerabilities in other protocols (ftp, ssh, etc..). Any scan from the CIS Network Security Team will originate from scan.tamu.edu or net.tamu.edu.

Industry Security Sites and Organizations


CIS Network Security Team  -  Texas A&M University
Send comments to security@net.tamu.edu