Early last week, LSO learned from the University of Missouri Division of IT Security that the MERLIN Gateway had been compromised. One of the possibly affected files was related to SciFinder Scholar. After discussions with CAS (the publisher of SciFinder Scholar), LSO has agreed to make some changes to the authentication scheme for this product.
Instead of a single site.prf file distributed by LSO, the scheme for SciFinder Scholar will be individual site.prf files, which will be keyed to email addresses. This is how CAS has responded to similar events on other campuses.
This change will take place on Wednesday, February 3, at 2:00 A.M. CST. Users accessing SciFinder Scholar will be asked to obtain new credentials in a process that is similar to the one-time registration for the web version of SciFinder Scholar some time ago. Users must use an email address from a campus domain name (e.g. @umkc.edu or @mst.edu) to receive the new credentials. After following the directions at SciFinder Scholar, the user will receive a new site.prf file and further instructions for installation.
Please contact us with any questions.
-posted 2/1/2010