Educause Security Discussion mailing list archives

Re: The Wisdom of Allowing an Open Port

From: Roger A Safian <r-safian () NORTHWESTERN EDU>
Date: Wed, 28 Nov 2012 22:40:17 +0000

Considering this is a hospital I wonder if you might be able to accomplish this using a VPN solution citing HIPAA?

From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Jim 
Pardonek
Sent: Wednesday, November 28, 2012 4:19 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] The Wisdom of Allowing an Open Port

Good Afternoon,

On our hospital campus we have an "open" wlan that requires the usual rudimentary form of authentication (some email 
address and your name) to gain access, similar to a hotel portal.  Some of the medical staff want us to open port 1373 
TCP so that they can access our GroupWise (I know) servers using the regular client application.  Other than the normal 
reasons for keeping everything except 80 and 443 closed, I'm looking to see if anyone would like to weigh in on reasons 
for and against opening this up.

Thanks,

Jim

James Pardonek, CISSP, CEH
Information Security Officer
Loyola University Chicago
1032 W. Sheridan Road | Chicago, IL  60660

*: (773) 508-6086

Current thread:

The Wisdom of Allowing an Open Port Jim Pardonek (Nov 28)
- Re: The Wisdom of Allowing an Open Port Jeff Kell (Nov 28)
- Re: The Wisdom of Allowing an Open Port Julian Y Koh (Nov 28)
- Re: The Wisdom of Allowing an Open Port Kevin Wilcox (Nov 28)
- Re: The Wisdom of Allowing an Open Port Roger A Safian (Nov 28)
- Re: The Wisdom of Allowing an Open Port Will Froning (Nov 28)
  - Re: The Wisdom of Allowing an Open Port Roger A Safian (Nov 29)
- Re: The Wisdom of Allowing an Open Port Russ Leathe (Nov 29)