Educause Security Discussion mailing list archives

Re: Appropriate University/Internet blocks

From: Theresa Semmens <Theresa.Semmens () NDSU NODAK EDU>
Date: Thu, 17 Jun 2004 08:49:35 -0500

Eric, I found your comments offensive and inappropriate for an educause
discussion. 

Theresa Semmens, CISA
NDSU IT Security Officer
North Dakota State University
Fargo, ND 58101
701.231.5870
Theresa.Semmens () ndsu nodak edu

Happiness comes through doors you didn't know you left open.

This electronic mail message may contain privileged and confidential
information.  If the reader is not the intended recipient, or the employee
or agent responsible to deliver it to the intended recipient, you are hereby
notified that any use, disclosure, dissemination, distribution, or copying
of this communication and any attached files may be strictly prohibited.  If
you have received this communication in error, please immediately notify
Information Technology Services contact by telephone at 701-231-5870, or by
reply e-mail, and permanently delete the message from your system.  Receipt
by anyone other than the intended recipient is not a waiver of any privilege
or immunity. 
 


-----Original Message-----
From: The EDUCAUSE Security Discussion Group Listserv
[mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Eric Pancer
Sent: Wednesday, June 16, 2004 8:00 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Appropriate University/Internet blocks


Tom Conley wrote on Wed, 2004-06-16 at 10:20:37 -0400...

What is the appropriate level of filtering or port blocking at A 
University/Internet border?


How much "Smack My [Arse] and Call Me Sally Jalapeno Hot Sauce" [1] do you
like on your burrito? That's about the same answer you'll get when
approaching various folks on this discussion.

Analyze what you need, where your risk is and what will benefit your
environment. Will a blanket deny of 445/tcp at your border work? Or will
edge filters with more stringent filters contain worms and attacks better?
Write up your experience, your struggles, and share them with others. Rinse.
Repeat.

Sorry to be vague, but I used to be a proponent of filtering, now I'm not so
much anymore.

- Eric

[1] Yes, this exists and is VERY hot!
    <http://www.somelikeithotter.com/sku081.htm>

--
Eric Pancer :.: Computer Security Response Team :.: DePaul University
http://security.depaul.edu/ .:`:.:':.:`:. epancer () security depaul edu
pgp: 1024D/7ACBCFF3 C022 4991 41E5 51E7 683C F765 62F7 7F8E 7ACB CFF3

**********
Participation and subscription information for this EDUCAUSE Discussion
Group discussion list can be found at http://www.educause.edu/cg/.

**********
Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at 
http://www.educause.edu/cg/.

Current thread:

Appropriate University/Internet blocks Tom Conley (Jun 16)
- <Possible follow-ups>
- Re: Appropriate University/Internet blocks Willis Marti (Jun 16)
- Re: Appropriate University/Internet blocks Ariel Silverstone (Jun 16)
- Re: Appropriate University/Internet blocks Eli Dart (Jun 16)
- Re: Appropriate University/Internet blocks Shawn Kohrman (Jun 16)
- Re: Appropriate University/Internet blocks Willis Marti (Jun 16)
- Re: Appropriate University/Internet blocks John Center (Jun 16)
- Re: Appropriate University/Internet blocks Eric Pancer (Jun 16)
- Re: Appropriate University/Internet blocks Mike Wiseman (Jun 17)
- Re: Appropriate University/Internet blocks Theresa Semmens (Jun 17)
- Re: Appropriate University/Internet blocks Lucas, Bryan (Jun 17)
- Re: Appropriate University/Internet blocks Eric Pancer (Jun 17)
- Re: Appropriate University/Internet blocks Professor George Davida (Jun 17)
- Re: Appropriate University/Internet blocks Angel L Cruz (Jun 17)
- Re: Appropriate University/Internet blocks Davis, Thomas R. (indiana.edu) (Jun 18)