Re: Login Banners?

[Justin Bennett <jbennett () MSJC EDU>]

Good afternoon,

For local user accessed systems, login banner is presented with a synopsis of our local Acceptable Use Policy:
"Use of this District Owned Equipment Is Governed by the Mt. San Jacinto College Acceptable Use Policy.  By continuing 
to enter the system, the user agrees that he/she has read, understood, and will comply with the policies outlined in 
the document.                    http://www.msjc.edu/aupfs.htm";

For other systems with no-user direct access, a login banner, built off a template from NIST, is presented:
"NOTICE:
This is a State computer system and is the property of the California
State Government. It is for authorized use only. Unauthorized or
improper use of this system may result in administrative disciplinary
action and civil and criminal penalties. Any or all uses of this system
and all files on this system may be intercepted, monitored, recorded,
copied, audited, inspected, and disclosed to authorized site,
Mt. San Jacinto College, and law enforcement personnel, as well as
authorized officials of other agencies."

Justin Bennett
Supervisor of Network Technology
Information Technology
jbennett () msjc edu

Mt. San Jacinto College
Phone 951-639-5090
http://www.msjc.edu

 Security Notice: MSJC Information Technology Staff will never ask for your password. Keep your passwords private to 
protect yourself and the security of our network.


-----Original Message-----
From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Matt 
Stork
Sent: Thursday, March 07, 2013 3:29 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Login Banners?

We use the statement below on all of our public use computers before a user is allowed to log in.  Today might be only 
the second time I have read the whole statement.  The first being right when I started working for NUL. I do not think 
anyone stops to read it.

"Computer and network users are responsible for: 1) Using the computer, system or network in ways that do not interfere 
with or disrupt the normal operation of the computer or network. 2) Respecting the rights of others, including their 
rights as set forth in other University policies for students, faculty, and staff. These rights include but are not 
limited to privacy, freedom from harassment, and freedom of expression. 3) Knowing and obeying the specific policies 
established for the computer and networks."


Matt Stork
System Administrator
Northwestern University Library
(847) 491-3758 | mstork () northwestern edu


-----Original Message-----
From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Julian Y 
Koh
Sent: Thursday, March 07, 2013 4:59 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: Login Banners?

YEARS ago, NU used to have the following on things like UNIX servers, modem pool terminal servers, etc etc.

"This system is for the use of authorized users only.  Individuals using this computer system without authority or in 
the excess of their authority are subject to having all their activities on this system monitored and recorded by 
system personnel.  In the course of monitoring individuals improperly using this system or in the course of system 
maintenance, the activities of authorized user may also be monitored.  Anyone using this system expressly consents to 
such monitoring and is advised that if such monitoring reveals possible evidence of illegal activity or violation of 
University regulations system personnel may provide the evidence of such monitoring to University authorities and/or 
law enforcement officials."

I don't really see a lot of systems still using this.


Our login banner was cited at <https://www.gnu.org/philosophy/right-to-read.html> even.  :)



--
Julian Y. Koh
Acting Associate Director, Telecommunications and Network Services Northwestern University Information Technology (NUIT)

2001 Sheridan Road #G-166
Evanston, IL 60208
847-467-5780
NUIT Web Site: <http://www.it.northwestern.edu/> PGP Public Key:<http://bt.ittns.northwestern.edu/julian/pgppubkey.html>