Path: utzoo!utgpu!news-server.csri.toronto.edu!rpi!bu.edu!nntp-read!jc From: jc@raven.bu.edu (James Cameron) Newsgroups: comp.admin.policy Subject: Harrassment via email Message-ID: Date: 24 May 91 15:53:54 GMT Sender: news@bu.edu Distribution: comp Organization: What do you mean 'That *can't* be done????' Lines: 192 Newsgroups: comp.admin.policy Subject: Harrassment via email Distribution: comp [..Editorial note: I do hope this thread dies soon...] I work for two different departments here at Boston University, in Boston, Massachusetts, USA. I would like to add and respond to a few things posted here. Just a little background on myself: I am a Senior Consultant for Information Technology (BU Computer department) and I am the SysAdmin for a few engineering Sun labs. I am still new (as I am 20) but I have seen a lot. *8-) First of all, if someone is harrassing a user through email and it goes to the extent where I am asked to become involved, then YES, I will. If it is on one of the machines I administer, I will send mail to the administrator of the machine where the offender is sending from. (This does not happen at our labs.) If it is on the machine where I consultant, then I would transfer the user to another Staff member who is in charge of such things. Most likely, if it was offensive then there is a very good chance that the account will immediately be disabled. There are 8,000 active users (over 21,000 accounts) and this is the necessary course of action. Appended to this message is Boston University's Computing Ethics policy. I had planned to respond to some of the postings, but have decided to refrain from doing so. This is in part due to the fact that I would like this thread to die and in part that I don't feel that discussion will sway people. This is almost a moral question...almost. And it is time that we deal with the colder, more logical side of things: the computers itselves. (* smile *) (Couldn't use "themselves" there...just couldn't. *8-) ) But, I will make a few statements.... 1. IT IS sometimes necessary to take a position on matters dealing with your users which may seem like the police. Ie, one user hogging all the resources during the middle of the day, user taking up too much of a partition, user harrassing another, etc. 1a. IT is NOT the most enjoyable part of our jobs. 2. Our jobs are NOT similiar to the phone technicians. (I really can't believe someone actually suggested that.) 2a. And if *your* job is, then you are NOT a SysAdmin. 3. Harrassment in many cases in real life (ie, non-computer world (if such a beast exists)) is done anonymously. Ie, phone calls, threatening letters, etc. Most email can be traced to a user. Thus, something can be done about it. If I am threatened over the phone by someone I know, and it continues after requesting the person to stop, then YES, of COURSE I can go to the police. Oh well...enough. One letter just really got me going, and I had to send this. *8-( jc -- James Cameron (jc@raven.bu.edu) Signal Processing and Interpretation Lab. Boston, Mass (617) 353-2879 ------------------------------------------------------------------------------ "But to risk we must, for the greatest hazard in life is to risk nothing. For the man or woman who risks nothing, has nothing, does nothing, is nothing." (Quote from the eulogy for the late Christa McAuliffe.) [...here's the ethics policy...] Boston University Information Technology ethics Conditions of Use and Policy on Computing Ethics March 26, 1990 ________________________________________________________________________ CONDITIONS OF USE To protect the integrity of the University's computing facilities and the users thereof against unauthorized or improper use of those facili- ties, Boston University reserves the right, without notice, to: limit or restrict any individual's use, and to inspect, copy, remove or otherwise alter any data, file, or system resource which may undermine the author- ized use of any computing facility. Boston University also reserves the right periodically to check any system and any other rights necessary to protect its computing facilities. The University disclaims responsi- bility for loss of data or interference with files resulting from its efforts to maintain the privacy and security of those computing facili- ties. As used herein and in the Policy on Computing Ethics below, the term "computing facility" means, refers to and includes any and all forms of computer-related equipment, tools and intellectual property, including computer systems, personal computers and computer networks and all forms of software, firmware, operating software and application software, which is owned by the University or is under the University's possession, custody or control. Users of the University's computing facilities are required to comply with and, by using any such facilities, agree to comply with and be sub- ject to the Boston University Information Security Policy, the Policy on Computing Ethics and these Conditions of Use. The University reserves the right to amend these Conditions and Policies at any time without prior notice. POLICY ON COMPUTING ETHICS Thousands of users share the computing facilities at Boston University. These facilities must be used responsibly by everyone, since misuse by even a few individuals has the potential to disrupt University business or the work of others. You are therefore required to exercise responsi- ble, ethical behavior when using the University's computing facilities. This includes, but is not limited to, the following: 1. You must use only those computer resources which you have been indi- vidually authorized to use by the University. The unauthorized use of computer resources, as well as the providing of false or misleading information for the purpose of obtaining access to computing facili- ties, is prohibited and may be regarded as a criminal act and treated accordingly by the University. You must not use University computing facilities to gain unauthorized access to computing facilities of other institutions, organizations or individuals. 2. You may not authorize anyone to use your computer accounts for any reason. You are responsible for all use of your accounts. You must take all reasonable precautions, including password maintenance and file protection measures, to prevent use of your account by unauthorized per- sons. You must not, for example, share your password with anyone else. 3. You must use your computer resources only for the purposes for which they were authorized. For example, non-funded research or student accounts may not be used for private consulting. Non-funded research or student accounts may not be used for funded research without prior approval from the University. You must not use your computer resources for unlawful purposes, such as the installation of fraudulently or ille- gally obtained software. Use of external networks connected to the Uni- versity's networks must comply with the policies of acceptable use pro- mulgated by the organizations responsible for those networks. 4. You must not access, alter, copy, move or remove information, pro- prietary software or other files (including programs, members of subrou- tine libraries, data and electronic mail) without prior authorization from the appropriate University data trustee, security officer or other responsible party. You must not copy, distribute, display or disclose third party proprietary software without prior authorization from the licensor. Proprietary software must not be installed on systems not properly licensed for its use. 5. You must not use any computing facility irresponsibly or needlessly affect the work of others. This includes transmitting or making acces- sible offensive, annoying or harassing material; intentionally, reck- lessly or negligently damaging any system; intentionally damaging or violating the privacy of information not belonging to you; intentionally misusing system resources or allowing misuse of system resources by oth- ers; or loading software or data from untrustworthy sources, such as free-ware, onto administrative systems. 6. You are encouraged to report any violation of these guidelines by another individual and any information relating to a flaw in or bypass of computing facility security to Information Technology, University Information Systems or the Office of Internal Audit. The unauthorized or improper use of Boston University's computer facili- ties, including the failure to comply with the above guidelines, consti- tutes a violation of University policy and will subject the violator to disciplinary and/or legal action by the University, and, in some cases, criminal prosecution. In addition, the University may require restitu- tion for any use of service which is in violation of these guidelines. Any questions about this policy or of the applicability of this policy to a particular situation should be referred to Information Technology, University Information Systems or the Office of Internal Audit. -- -- James Cameron (jc@raven.bu.edu) Signal Processing and Interpretation Lab. Boston, Mass (617) 353-2879 ------------------------------------------------------------------------------ "But to risk we must, for the greatest hazard in life is to risk nothing. For the man or woman who risks nothing, has nothing, does nothing, is nothing." (Quote from the eulogy for the late Christa McAuliffe.)