Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Path: utzoo!mnetor!seismo!lll-lcc!well!itivax!umich!jtr485
From: jtr485@umich.UUCP (Johnathan Tainter)
Newsgroups: comp.edu
Subject: Re: Net Access Policies?
Message-ID: <29@umich.UUCP>
Date: Tue, 20-Jan-87 21:45:59 EST
Article-I.D.: umich.29
Posted: Tue Jan 20 21:45:59 1987
Date-Received: Fri, 23-Jan-87 21:03:31 EST
References: <9994@gatech.EDU> <490@ai.WISC.EDU> <1535@cit-vax.Caltech.Edu>
Organization: EECS, University of Michigan
Lines: 24

In article <1535@cit-vax.Caltech.Edu>, trent@cit-vax.UUCP writes:
> In article <490@ai.WISC.EDU> neves@ai.WISC.EDU (David M. Neves) writes:
> >If you are worried about your undergraduates then you should restrict
> >read assess to FTP, telnet, rlogin, etc.  I believe this is done at
> >our site.  I am sure Unix wizards could come up with more imaginitive
> 
> Unfortunately, (fortunately?) there is almost no secure way of doing
> this except ripping out the ARPA connection by its roots. (short of
> kernal and device hacking) 
When I was at uofwisc-madison (where neves is), until a little over a year
ago they had multiple machine.  These were devided into educational and
research and only the research machines actually had access to the outside
world.  The educational machines used a more restrictive local network to 
talk to the other machines.
Of course, things were getting pretty muddy as I was leaving with the
introduction of many sub microscopic vaxen and other new equipment.
The 'I promise I will do only what my professor says to on this account'
paper was a recent creation.  It was actually a thrown together response to a 
security breach.  The breach scared some of the administrators who were afraid
the boondoggles they have been living under would get exposed and they were
going to heavily overreact.  This was curbed fortunatedly by more moderate and 
realistic viewpoints.
--j.a.tainter
> 					../ray\..