Educause Security Discussion mailing list archives

Re: VPN/ssh and foreign travel

From: Brad Judy <win-hied () BRADJUDY COM>
Date: Wed, 19 Nov 2008 12:33:01 -0500

There shouldn't be an export control issue if you're talking about employees
travelling to another country with encryption software installed on their
notebook.  These travelers are presumably keeping the computer in their own
possession and bringing it back with them, in which case nothing was
exported.

Now, if they are travelling to a more heavily restricted country like North
Korea, you might have different issues.

Many campuses (including my former one) have been requiring encrypted
authentication to campus systems for years.

Brad Judy

----- Original Message -----
From: "jeff murphy" <jcmurphy () BUFFALO EDU>
To: <SECURITY () LISTSERV EDUCAUSE EDU>
Sent: Wednesday, November 19, 2008 12:20 PM
Subject: [SECURITY] VPN/ssh and foreign travel

We're trying to eliminate use of cleartext password transmission for
access to university systems. One point of discussion involves dealing
with US export controls. What I'd like to hear from you (sec@educ) is
your thoughts on whether it's practical to require encrypted access  given
the export issue?

Thx

Jeff

Current thread:

VPN/ssh and foreign travel jeff murphy (Nov 19)
- <Possible follow-ups>
- Re: VPN/ssh and foreign travel Brad Judy (Nov 19)
- Re: VPN/ssh and foreign travel Gary Dobbins (Nov 19)
- Re: VPN/ssh and foreign travel Josh Drummond (Nov 19)
- Re: VPN/ssh and foreign travel Gary Flynn (Nov 19)
- Re: VPN/ssh and foreign travel Rowe, Ken (Nov 19)
- Re: VPN/ssh and foreign travel Brad Judy (Nov 19)