+ Post New Thread
Page 1 of 2 12 LastLast
Results 1 to 15 of 23
MIS Systems Thread, Sims Password Case Sensitivity Broken in Technical; We have this morning noticed (although i suspect this has been the case for while) that all sims passwords are ...
  1. #1
    MACIT's Avatar
    Join Date
    Sep 2008
    Posts
    51
    Thank Post
    1
    Thanked 1 Time in 1 Post
    Rep Power
    0

    Sims Password Case Sensitivity Broken

    We have this morning noticed (although i suspect this has been the case for while) that all sims passwords are no longer case sensitive!!

    Is anyone else aware of this I asume its not local to us

    We are on 7.144

    Regards


    Neil

  2. #2
    Sivadam's Avatar
    Join Date
    Feb 2009
    Location
    Dronfield - Derbyshire
    Posts
    1,449
    Thank Post
    136
    Thanked 208 Times in 175 Posts
    Rep Power
    55
    I can't ever remember them being case sensitive!

  3. #3

    Join Date
    Feb 2007
    Location
    Stockport
    Posts
    853
    Thank Post
    258
    Thanked 105 Times in 81 Posts
    Rep Power
    39
    Quote Originally Posted by Sivadam View Post
    I can't ever remember them being case sensitive!
    Same here

  4. #4


    Join Date
    Sep 2007
    Location
    UK
    Posts
    5,413
    Thank Post
    1,436
    Thanked 876 Times in 562 Posts
    Rep Power
    645
    I just tried ours (7.144) and it's not case sensitive. I always assumed it was, @Sivadam could well be right.

  5. #5
    Guest

    Join Date
    Jun 2009
    Posts
    3,754
    Thank Post
    1,458
    Thanked 489 Times in 375 Posts
    Rep Power
    0
    SIMS .net and FMS are not case sensitive for passwords.

  6. #6
    Sivadam's Avatar
    Join Date
    Feb 2009
    Location
    Dronfield - Derbyshire
    Posts
    1,449
    Thank Post
    136
    Thanked 208 Times in 175 Posts
    Rep Power
    55
    Quote Originally Posted by laserblazer View Post
    I just tried ours (7.144) and it's not case sensitive. I always assumed it was, @Sivadam could well be right.
    He usually is ............!!!!

  7. #7

    vikpaw's Avatar
    Join Date
    Sep 2006
    Location
    Saudi Arabia
    Posts
    5,851
    Thank Post
    672
    Thanked 1,383 Times in 1,145 Posts
    Rep Power
    350
    Never been case sensitive. It's the first thing people ask when you've reset it to NKAJFUWEIA and i always say, just type it in.

  8. #8
    MACIT's Avatar
    Join Date
    Sep 2008
    Posts
    51
    Thank Post
    1
    Thanked 1 Time in 1 Post
    Rep Power
    0
    Well I've learnt something new today!

    To be honest though considering the massive amount of highly confidential data Sims holds i believe this to be wholly indadequate and Capita should sort it out and quick!

  9. #9


    Join Date
    Dec 2005
    Location
    In the server room, with the lead pipe.
    Posts
    4,638
    Thank Post
    275
    Thanked 778 Times in 605 Posts
    Rep Power
    223
    When I started here, everyone assumed passwords weren't case sensitive. It wasn't until I first poked into SIMS that I found the culprit.

  10. #10

    matt40k's Avatar
    Join Date
    Jun 2008
    Location
    Ipswich
    Posts
    4,407
    Thank Post
    368
    Thanked 639 Times in 521 Posts
    Rep Power
    158
    Quote Originally Posted by MACIT View Post
    To be honest though considering the massive amount of highly confidential data Sims holds i believe this to be wholly indadequate and Capita should sort it out and quick!
    It's called Trusted logins.

  11. #11

    Edu-IT's Avatar
    Join Date
    Nov 2007
    Posts
    7,139
    Thank Post
    403
    Thanked 622 Times in 568 Posts
    Rep Power
    181
    Quote Originally Posted by matt40k View Post
    It's called Trusted logins.
    Isn't two factor security (system logon and SIMS logon) more secure though? At least if you can't enforce SIMS security, you can enforce system security.

  12. #12

    vikpaw's Avatar
    Join Date
    Sep 2006
    Location
    Saudi Arabia
    Posts
    5,851
    Thank Post
    672
    Thanked 1,383 Times in 1,145 Posts
    Rep Power
    350
    It's not really two factor though is it, it's two - step, and usually they will make the two passwords match! At least with trusted, you can force it to be complex just in case they do decide that 1234 is a suitable sims password.
    I'd like to see some kind of physical device required like banks use, so when the system is open to the world via portals, there is an extra layer of security.

  13. #13

    matt40k's Avatar
    Join Date
    Jun 2008
    Location
    Ipswich
    Posts
    4,407
    Thank Post
    368
    Thanked 639 Times in 521 Posts
    Rep Power
    158
    Quote Originally Posted by Edu-IT View Post
    Isn't two factor security (system logon and SIMS logon) more secure though? At least if you can't enforce SIMS security, you can enforce system security.
    Nope, like vikpaw says, it isn't two-factor. Plus they normally don't change it, give it a pupil so they can mark the register, have it written on the laptop or on a piece of paper in the laptop bag. SIMS SQL logins has been done really well by Capita, but it's a false sense of security, at least from the point of view of SIMS in the classroom.

    Think of it like this, when you open Outlook, do you put a password in? No, what about when you go into the staff shared area? No. Well both hold sensitive data. Best thing is to teach staff "Windows + L", it takes seconds so they're is no excuse. They're professional, they're expected to follow the security rules.

  14. #14

    matt40k's Avatar
    Join Date
    Jun 2008
    Location
    Ipswich
    Posts
    4,407
    Thank Post
    368
    Thanked 639 Times in 521 Posts
    Rep Power
    158
    Quote Originally Posted by vikpaw View Post
    I'd like to see some kind of physical device required like banks use, so when the system is open to the world via portals, there is an extra layer of security.
    It's generally accepted that being onsite connected to a internal network to be a layer of security. Basically you must have a "key" to get onsite and into a classroom, I mean if I walk into your school, I assume I would have to pass some sort of physical security to get into a classroom, even if it is a member of staff. That's all assuming you don't have network sockets in the reception area or car park, or a insecure wifi network

  15. #15


    Join Date
    Dec 2005
    Location
    In the server room, with the lead pipe.
    Posts
    4,638
    Thank Post
    275
    Thanked 778 Times in 605 Posts
    Rep Power
    223
    Quote Originally Posted by vikpaw View Post
    I'd like to see some kind of physical device required like banks use, so when the system is open to the world via portals, there is an extra layer of security.
    The last time I asked SIMS about this in person, they did a good impression of attempting to run away while staying in one place. On further questioning the half-answer I got was "if you're hosting it yourself and can make it work with sharepoint, woohoo, but we don't support it and the government says we don't need to".

    This was the same conversation which involved "wait, so there's no audit trails for it either?"

SHARE:
+ Post New Thread
Page 1 of 2 12 LastLast

Similar Threads

  1. [SIMS] SIMs Security for sensitive data
    By sparker in forum MIS Systems
    Replies: 9
    Last Post: 19th November 2011, 06:23 AM
  2. SIMS Password reset
    By dsquared2 in forum MIS Systems
    Replies: 1
    Last Post: 7th September 2010, 10:02 AM
  3. Case Sensitive Apache/Moodle
    By CyberNerd in forum *nix
    Replies: 5
    Last Post: 13th October 2008, 09:15 PM
  4. SIMS - Passwords
    By Gatt in forum MIS Systems
    Replies: 13
    Last Post: 12th April 2007, 09:02 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •