Educause Security Discussion mailing list archives

Re: Sniffer notification

From: Doug Sandford <dsandfor () SEEBECK UA EDU>
Date: Tue, 23 Mar 2004 08:55:03 -0600

I would be interested to know what circumstances led you and others
to move forward with the Sniffer project. Several factions here have
resisted the process because of perceived privacy issues, thus the
delay/hesitancy. Was your decision driven by the recent spate of
virus and 'compromised host' issues?



Forwarded by:           dsandfor () seebeck ua edu
Forwarded to:           doug () bama ua edu
Date forwarded:         Tue, 23 Mar 2004 8:48:18 -0500
Date sent:              Tue, 23 Mar 2004 09:47:42 -0500
Send reply to:          The EDUCAUSE Security Discussion Group Listserv              <SECURITY () LISTSERV EDUCAUSE EDU>
From:                   Cal Frye <cjf () CALFRYE COM>
Organization:           Oberlin College
Subject:                [SECURITY] Sniffer notification
To:                     SECURITY () LISTSERV EDUCAUSE EDU

Good Folks,
A quick question on policy documents, if you will.

We're about to diagnose some networking issues here with rather
aggressive use of Sniffer on student ports. We've always considered this
to be pretty intrusive, and not to be done without notifying the users
involved that we would be listening in. But we don't have written
policies concerning this action, beyond the general statement that we
(1) respect users privacy but (2) reserve the right to sniff should the
need strike us.

Anyone have a quick link to policies and notification documents to be
sent to the user that I might have a look at and/or steal outright? I
worry that there's something I might overlook in the process.

Thanks in advance!
--
--Cal Frye, Network Administrator, Oberlin College
  www.ouuf.org, www.calfrye.com

   "Borrow money from pessimists--they don't expect it back."

**********
Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at 
http://www.educause.edu/cg/.
Doug Sandford
Information Security Officer
University of Alabama
Seebeck Computer Center
doug () ua edu

This email is intended only for the person to whom it is
addressed.  Any review or other use of this information by
persons or entities other than the intended recipient or any
retransmission without the consent of the sender is prohibited.

**********
Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at 
http://www.educause.edu/cg/.

Current thread:

Sniffer notification Cal Frye (Mar 23)
- <Possible follow-ups>
- Re: Sniffer notification Doug Sandford (Mar 23)
- Re: Sniffer notification Matthew Keller (Mar 23)
- Re: Sniffer notification Richard Gadsden (Mar 23)
- Re: Sniffer notification Tracy Mitrano (Mar 23)
- Re: Sniffer notification Brian Reilly (Mar 23)
- Re: Sniffer notification Neil_Sachnoff (Mar 23)
- Re: Sniffer notification Cal Frye (Mar 23)
- Re: Sniffer notification Dan Schneider (Network Administrator) (Mar 23)
- Re: Sniffer notification Doug Sandford (Mar 23)
- Re: Sniffer notification Cal Frye (Mar 23)
- Re: Sniffer notification David L. Wasley (Mar 23)

(Thread continues...)