Re: Acceptable Use

[Theresa Semmens <Theresa.Semmens () NDSU NODAK EDU>]

For those of you who have acceptable use policies for visitors, could you
please send me a link to them. We are in the process of creating one, and I
want to make sure all of the "loop holes" are covered.  Thank you. 
 
 
Theresa Semmens, CISA
NDSU IT Security Officer
North Dakota State University
Fargo, ND 58101
701.231.5870
Theresa.Semmens () ndsu nodak edu

Happiness comes through doors you didn't know you left open.

This electronic mail message may contain privileged and confidential
information.  If the reader is not the intended recipient, or the employee
or agent responsible to deliver it to the intended recipient, you are hereby
notified that any use, disclosure, dissemination, distribution, or copying
of this communication and any attached files may be strictly prohibited.  If
you have received this communication in error, please immediately notify
Information Technology Services contact by telephone at 701-231-5870, or by
reply e-mail, and permanently delete the message from your system.  Receipt
by anyone other than the intended recipient is not a waiver of any privilege
or immunity.


-----Original Message-----
From: The EDUCAUSE Security Discussion Group Listserv
[mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Barros, Jacob
Sent: Wednesday, March 24, 2004 3:23 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Acceptable Use


We do see the same here at Grace College.  We rent facilities to large
corporations in the area for meeting or conference rooms..  also summer
conferences, board meetings, bball camps, etc.  
 
All individuals that want use our resources are required to agree to our
AUP.  There are exceptions but the office/group that is sponsoring the
visitor(s) is made aware that if the visitor violates policy, we cut the
access and the sponsor(s) is held responsible for any problems.  
 
We have some control over access right now in two ways:  first because we
don't leave 'public' ports open or activated (they are physically connected
by request only and disconnected when the specified time frame has expired);
secondly we force all outbound traffic through our proxy server.  If you
know our proxy server address, you could bypass our office but at that
point, we don't make a fuss.  
 
We are near the end of a long-range plan that will enable us to
(campus-wide) require authentication before network access is granted.
 
-----Original Message-----
From: The EDUCAUSE Security Discussion Group Listserv
[mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Donald, A. Wayne
Sent: Wednesday, March 24, 2004 2:14 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Acceptable Use


Virginia Tech has frequent visitors to our campus.  This is especially true
during the summer when our dorms are open to sports camps, youth groups
(FFA, 4H, etc.), and even some large conferences not "officially" associated
with the University - using dorm and meeting space.  We are seeing an
increase in these individuals bringing computers (primarily laptops) and
wanting to connect to the network.
 
We do require individuals receiving a userid from Virginia Tech to agree to
acceptable use guidelines prior to getting connected.  However, these
individuals (in most cases) will not have a Virginia Tech userid and do not
currently agree to the guidelines.
 
Do other institutions experience such influx of individuals and do you do
anything special to ensure there is appropriate use of your resources?
********** Participation and subscription information for this EDUCAUSE
Discussion Group discussion list can be found at
http://www.educause.edu/cg/.

**********
Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at 
http://www.educause.edu/cg/.