Connecting to the MIT Network
- Try visiting any web page when on the MIT campus.
- Your browser will display a DHCP registration page.
- Click 'Student' Enter your Kerberos ID and password
- Click 'Register' Wait 10-15 minutes for activation.
- Select 'MIT Secure' as your wireless network.
- Then, enter your Kerberos credentials when prompted.
STOA recommends using Code42 to all MIT students, faculty, and staff affiliated with the department. This is an automated solution that allows the user the flexibility to select individual folders or the default backup set, and then stores copies of those folders off-site, where they can be managed and retrieved as needed.
This is a superior method to manually copy and pasting files and folders to an external hard drive or public cloud (e.g. OneDrive, Dropbox).
As a supplementary method of backing up your data, be sure to:
- Not use flash drives for backups, and do not use them on public machines.
- Keep the backups apart from your laptop (so that if laptop is lost in a fire or stolen, the backups aren't lost with it).
- Back-up physical media regularly, and store these apart from one another.
- If copying files to hard drive, do not overwrite the previous backup. Keep multiple generations of backups so you can revert as needed.
- Consider cloud storage options like Google Drive, iCloud or preferably an MIT-supported solution such as Dropbox and OneDrive, and automate this process if possible.
In addition to Code42, there is other software that will run incremental backups to local media (e.g. an external hard drive or backup drive), and those that run incremental backups to network volumes or cloud storage. An example of the former is Apple's free 'Time Machine' backup software which comes with OS X, while the latter applies to the OneDrive or Google Drive applications.
- This is the best way to backup large multimedia collections such as pictures, movies and music.
- Macintosh: Time Machine is free, runs transparently in the background and is easy to restore from. All you need is an external hard drive.
- Windows: As with Mac OS, we recommend using Microsoft's native backup solution for Windows operating systems, Backup and Save.
Network (Off-site) Backups
We strongly recommend the use of Code42 for all MIT related work. For installation, please see here: http://ist.mit.edu/crashplan
STOA officially supports the Outlook mail software, as well as the in-browser counterpart at owa.mit.edu. Apple Mail is supported on a best-effort basis.
Please see below for answers to commonly asked questions related to email.
Can I have all my MIT mail forwarded elsewhere (e.g. Gmail)?
Yes, however you must use your MIT email address when writing to most MIT email lists, all ARCH email lists, and as your response to most forms at MIT. Please keep in mind that your alternate email may be caught in spam filters, and that there may be privacy concerns to consider when using non-MIT email.
Instructions for email forwarding can be found here.
What client do you recommend?
Outlook is recommended by both STOA and IS&T for the best experience with your MIT Email. You may also use the Outlook Web Access client here.
STOA does not recommend the use of Apple Mail, Thunderbird, or other 3rd party mail clients.
How can I check how large my mailbox is, and how much storage I have left?
You can check this by going to https://owa.mit.edu, logging in, then hovering your mouse over your name as appears on left hand side of screen above your mailbox list.
How large of an attachment can i send?
30MB. For more information, please see IS&T's knowledge base article Q: What is the attachment size limit on MIT's email system?. Should you need to send an attachment larger than 30 MB, it is best practice to use a Dropbox or OneDrive link instead.
How can I manage my email quota?
These tips should keep your email quota under control.
- Go through your Inbox messages regularly and delete email messages you no longer need. If you are concerned about deleting something prematurely, do note that items you delete get moved to the "Deleted Items" folder (or "Trash") and stay there for a few more weeks.
- Any other items you want to keep should be moved to local storage as local folders. You can set your mail program (Outlook or Mail) with local folders that won't take any mail quota space. Please keep in mind that any local folders should be stored in a location that is backed up, in case the hard drive where they are stored fails. Also note that local folders are only accessible from the specific computer where they are created. If you ocassionally use owa.mit.edu to access email when away from your main computer, you won't see these folders. One strategy that might work for you is to make folders for different years at the end of the year and store anything you wish to keep there. Make sure these folders are stored locally.
- Move any email attachments that you wish to archive to your local computer, Dropbox, or One Drive, and delete them from the Inbox. Attachments can take up a lot of space. In order to quickly identify the biggest attachments, sort your mailbox by size. That will save a lot of time when going through this.
- Be sure to go through your "Sent" folder regularly to delete items you don't need, or to move them to your local machine for long-term storage. Also note that you may delete large attachments from "Sent" folder without deleting the actual email. This is useful if you want to keep a record of an email you sent, but don't need to keep the attachment embedded to it.
- If you have a Trash mailbox (a.k.a. Deleted Items folder) on the post office server, make sure it's emptied regularly.
How to Obtain
Web certificates allow for trusted and secure connections with certain web sites at MIT. For example, WebSIS (the MIT Student Information System) is only accessible to those with MIT Site Certificates and Personal Certificates installed in their web browsers. Please note that you cannot get web certificates without first obtaining your Kerberos ID.
Web certificates are tied to particular web browsers. So if you were, for example, to use Safari, Firefox, or Opera web browsers on your Macintosh, you would need install certificates for each of these browsers. STOA strongly recommends using CertAid to configure your certificates for Chome, Internet Explorer, Edge, and Safari. For Firefox, please click here.
Personal certificates expire every year on July 31st. When renewing certificates, please be sure to delete your old (expired) certificates.
This section covers operating system upgrades for both Mac and Windows workstations. We recommend performing the maintenance described in this section at the beginning of every term.
For optimum performance, the operating system and installed applications should be kept up to date. If your Mac is running a version of macOS more than one generation behind, please upgrade now following the macOS Upgrade instructions below:
Be sure your computer is running the latest macOS release with ALL of the latest patches (Monterey). If it is not, follow steps below:
- Backup your crucial files
- Run /Applications/App Store and search for Monterey
- Download latest macOS release
- When install completes: System Preferences > Software Update. Repeat this step until no more updates found
- Check that all of your applications (Office, Adobe, etc.) are all completely up to date
For optimum performance, the operating system and installed applications should be kept up to date. Windows Update should manage this automatically, but be sure to restart your computer when prompted.
Windows 10 Upgrade
- Backup your crucial files to an external hard drive and preferably an offsite location such as with Code42
- Download the Windows 10 install media from here
- If the upgrade is successful, reinstalling programs is not needed. Windows 10 now allows you to upgrade/downgrade versions without reinstalling
- Go to the Windows.old move out any files you want to keep
- Delete windows.old (see Disk Cleanup)
While a new Windows installation will make sure your computer is in good condition, those with any version of Windows should make sure they are in good health by doing the following:
- Install up-to-date Anti-virus software. While Windows Defender in Windows 10 is adequate, it would be wise to also run Sophos and Crowdstrike. Run a full scan (preferably in safe mode if infected)
- Make sure other software is up-to-date with PatchMyPC (free)
- Check the health of the hard drive. In a administrator command window type:
- chkdsk /f c: (and then reboot)
- defrag.exe -fv c: (only if you have a spinning hard disk and not an SSD and it may take hours)
- Backup your computer (see Backup)
- Bonus: Run system update software from your vendor (support.dell.com, lenovo.com, etc.)
Make sure your password is difficult to guess by both a computer and a human. IS&T has guidance on password complexity requirements here.
Do not share your password with anyone. If your password is compromised, STOA advises changing it immediately to prevent unintended consequences. STOA will never ask you for your password, nor will IS&T or our IT Partners in the wider SA&P and MIT community.
If you would like to change your password, you can find more information on how to do so here.
If you are on a Windows machine that is not connected to MITNet, and you log into either athena.mit.edu or win.mit.edu, please follow the instructions from IS&T here.
Password vault programs allow you to generate and hold on to more complicated passwords for your accounts. Some free example programs are:
If you have multiple people using your computer, please create a separate account for each user, with unique credentials for each.
DUO (Two-Factor Authentication)
Two-factor authentication (2FA) is a security mechanism that is becoming more available in many platforms and cloud-based services. STOA recommends using 2FA wherever it is available, to add an additional layer of non password-based security. MIT enforces two-factor authentication for most of its services, including Touchstone, through DUO.
All MIT users should register for DUO here: https://duo.mit.edu.
Whole disk encryption ensures that no one except for you will be able to access to your files should you device be stolen (and if they cannot guess your password). Without disk encryption, it is trivial for someone to gain access to all your files even without knowing your password. Furthermore, hard disk encryption on the Macintosh allows one to 'remote' wipe' the entire contents of the drive should the need arise.
All modern operating systems have automated update systems. STOA advises staying as up to date as possible on your machine, and taking the steps to ensure that you are running the latest security updates at an absolute minimum.
STOA recommends the use of Sophos on both macOS and Windows platforms, and this is provided free of charge to the MIT Community. We also recommend you augment your antivirus with endpoint protection on all MIT owned machines. Crowdstrike Falcon is the current offering from IS&T.
Be careful when clicking on links in suspicious emails and on unfamiliar websites. We also browsers like Chrome, Safari, Firefox, and Edge. On all operating systems, make sure you're up to date with all of the security updates for whichever web browser you choose.
Do not enter your administrative password unless you have specifically launched an application that requires it.
Most modern mobile devices have the ability to set a strong password, passphrase, gesture, or passcode, and STOA strongly recommends using these features to prevent danger to your personal data.
Many modern mobile devices have a remote wipe capability. If the device is on and connected, you can reach it through a website or computer application to erase it completely.
When at MIT, always connect to the MIT Secure wifi network instead of MIT, and make sure you have valid certificates on your device.
For assistance with securing your mobile device, please click here.
Locks can be purchased at many places where computer equipment is sold, and these are strongly recommended.
Doors are only as secure as the last person who entered or exited. The studios and computing clusters are extremely low security, and may be targeted by thieves. STOA strongly advises that you never leave your laptop, devices, or personal items unattended in a studio or publically acccessible space.
If you have a private office, it is recommended that you lock the door and secure any portable equipment in a cabinet when you are not in the space.
STOP tag registrations are offered approximately once per month by MIT Campus Police. While primarily a deterrent, this particular system has a good record of equipment recovery. Please be aware that it doesn't protect against data theft if a computer is stolen, and this is not something that can be tracked remotely.
Apple's iCloud features a Find My Mac program, which runs silently in the background and can be used to locate a stolen MacBook, iPhone, or iPad. You can also remote lock and remote wipe the device if lost. If you've just misplaced your iPhone, you can cause it to make noises until you finally locate it behind the sofa, even if it's on vibrate mode.