Educause Security Discussion mailing list archives

Re: Public Access Library Ports (was Re: Open access to student labs

From: Samuel Young <syoung () LASIERRA EDU>
Date: Thu, 21 Dec 2006 08:40:20 -0800

CALEA is the answer.  You either comply with the CALEA rules or you make
your network "private".  We have decided to make our network private as the
other option is too expensive for us.

We actually allowed the Library two options to make their portion of the
network "private".

Option 1:  Provide all the "research oriented" URL that we will allow the
users to go to without authentication.  We will then limit the user to only
those URLs.

Option 2:  We authenticate everyone on to the network.

Initially, they decided on option 1.  But they soon discovered that there
were too many websites.  So they opted of option 2.

If a community patron wishes to use our library computers, we will require
them to provide some type of identification, such as driver's license, plus
they will be required to sign our Network Usage Agreement.  After that, we
will provide them with a temporary logon.  This logon will expire after a
period of time.

Currently we have Cisco Clean Access for our authentication, but Cisco seems
to be de-supporting the product.  So we are looking at Safe Connect, Mirage
or Bradford Networks as an alternative.

God bless,
Sam Young
CIO
La Sierra University

-----Original Message-----
From: Valdis Kletnieks [mailto:Valdis.Kletnieks () VT EDU]
Sent: Wednesday, December 20, 2006 9:16 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Public Access Library Ports (was Re: [SECURITY] Open
access to student labs

On Wed, 20 Dec 2006 14:21:05 PST, Samuel Young said:

We require our students and visitors to logon to our network everywhere.
There are a few computers in the library that allow public access, but we
are about to close that loop as well.


Often, librarians have cows and kittens when the network people threaten
to close that loophole (for reasons that are totally justified in their
world view).  What methods and/or reasoning did sites use to win the
political
battle (or equally interesting, did the library win)?

Current thread:

Re: Public Access Library Ports (was Re: Open access to student labs Julian Y. Koh (Dec 21)
- <Possible follow-ups>
- Re: Public Access Library Ports (was Re: Open access to student labs Christopher E. Cramer (Dec 21)
- Re: Public Access Library Ports (was Re: Open access to student labs David Warner (Dec 21)
- Re: Public Access Library Ports (was Re: Open access to student labs Wayne Bullock (Dec 21)
- Re: Public Access Library Ports (was Re: Open access to student labs Wayne Bullock (Dec 21)
- Re: Public Access Library Ports (was Re: Open access to student labs Sheri J Thompson (Dec 21)
- Re: Public Access Library Ports (was Re: Open access to student labs Samuel Young (Dec 21)
- Re: Public Access Library Ports (was Re: Open access to student labs Wayne Bullock (Dec 21)
- Re: Public Access Library Ports (was Re: Open access to student labs Joey Rego (Dec 21)
- Re: Public Access Library Ports (was Re: Open access to student labs Bill Betlej (Dec 21)
- Re: Public Access Library Ports (was Re: Open access to student labs Chris Allison (Dec 21)
- Re: Public Access Library Ports (was Re: Open access to student labs David Gillett (Dec 21)
- Re: Public Access Library Ports (was Re: Open access to student labs Samuel Young (Dec 21)