Please use the following directions to disable SSL on your Windows computers that are not installed by ITCS. This is the only way to ensure the security of your encrypted Internet sessions and the sensitive information they contain.
The SSL (Secure Sockets Layer) encryption protocol has been used for many years to establish secure connections between computers (e.g., for credit card transactions on the Internet). However, the SSL protocol no longer provides adequate protection for encrypted Internet sessions.
On the ECU campus, ITCS will disable SSL in Microsoft Internet Explorer on university-owned faculty and staff Windows computers connecting to the campus data network. However, ITCS cannot fix this condition in other browsers installed on university computers or on any browser on your home computer.
Turning off SSL3 in Internet Explorer:
Turning off SSL 3.0 in Firefox:
Turning off SSL 3.0 in Safari:
Date: Thursday, October 16, 2014
WARNING! The campus is seeing a “YOUR MAILBOX IS ALMOST FULL” phishing scheme telling users: “The following evaluations have been assigned to you. Please log in to complete these evaluations. CLICK HERE TO EVALUATE USING SECURE ENCRYPTION. NOTE: Your log in will time out after 60 minutes. Your responses will be lost if you do not click on the "secure" button before 60 minutes lapses. There is no prompt when your 60 minute session has expired. Please save extensive comments periodically and check your time.”
If you receive one of these emails, please ignore and delete it. If you clicked on the link in the email you should change your passphrase immediately.
Reminder: ITCS reminds the campus to avoid e-mail scams, hoaxes and Phishing schemes circulating on the Internet and to not provide their password in response to such emails. Scams purporting to be from East Carolina University, Service Helpdesk, ECU IT, ECU Helpdesk, the Web Master, Webmail, the IRS, Your Financial Institution, etc. are bombarding e-mail mailboxes. Although IronPort blocks the majority of such e-mails, some scams successfully reach your e-mail mailbox.
NEVER provide personal or sensitive information in response to any unsolicited e-mail. Don’t open unsolicited e-mail attachments. No matter how realistic or enticing the e-mail message, you must remain vigilant in not responding to an e-mail hoax or scam. Just delete it! You can always contact the IT Help Desk to verify the authenticity of an e-mail. ITCS will post our announcements at www.help.ecu.edu, users can go there to verify the authenticity of an IT related announcement.
If you have provided personal or sensitive information in response to an e-mail scam and don’t know what to do, please contact ECU’s IT Help Desk at 328-9866 or www.help.ecu.edu.
Visit the IT Security website, www.ecu.edu/itsecurity for examples of e-mail scams and additional information on avoiding them.