Blocked URL Categories

[Ronald King <ronald.king () MORGAN EDU>]

Good afternoon,

We are a public institution in Maryland. We are being questioned by our
state auditors as to why we permit access to the URL categories
abused-drugs, extremism, hacking, and gambling when our AUP states IT
resources are not to be used for illegal activities or "for commercial,
religious, political (including activities supporting the nomination of any
person for political office or attempting to influence the vote in any
election or referendum), solicitation, or profit-making purposes."

Along with academic freedom, the perspective I have been arguing is one to
permit access to the sites. The argument is, just because a student
accesses a gambling website does not mean they are gambling.

So, my questions to the group are:

   - Do you block these URL categories by default?
   - If so, how do you address the request to research in areas that might
   require access to these URLs?
   - How did you convince the auditors it was necessary to allow access to
   these categories?

As always, responses can be addressed directly to me or via the listserv.

Thank you for your input!
*Ronald A. King, CISSP*
Chief Information Security Officer
Morgan State University Office: (443) 885-3372
1700 E. Cold Spring Ln. Email: ronald.king () morgan edu
Baltimore, MD 21251 URL: http://www.morgan.edu

*Growing the future ... Leading the world*
<http://www.morgan.edu/Documents/ABOUT/StrategicPlan/StrategicPlan2011-21_Final.pdf>