Re: Public Access Library Ports (was Re: Open access to student labs

[Joey Rego <JRego () LYNN EDU>]

Also we have moved to a new server but we are still accessing it via
online.lynn.edu

-----Original Message-----
From: Wayne Bullock [mailto:wayne () FAU EDU] 
Sent: Thursday, December 21, 2006 1:12 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Public Access Library Ports (was Re: [SECURITY]
Open access to student labs

I agree. After reading the Educause paper again I realized that it
really doesn't provide the wiggle room for libraries that I at first
thought it did.

        --Wayne

Wayne Bullock, MSCIS, CCNA
Associate Director, Network Services
Florida Atlantic University
777 Glades Road
Boca Raton, FL 33431

-----Original Message-----
From: Samuel Young [mailto:syoung () LASIERRA EDU]
Sent: Thursday, December 21, 2006 11:40 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Public Access Library Ports (was Re: [SECURITY]
Open access to student labs

CALEA is the answer.  You either comply with the CALEA rules or you make
your network "private".  We have decided to make our network private as
the other option is too expensive for us.

We actually allowed the Library two options to make their portion of the
network "private".

Option 1:  Provide all the "research oriented" URL that we will allow
the users to go to without authentication.  We will then limit the user
to only those URLs.

Option 2:  We authenticate everyone on to the network.

Initially, they decided on option 1.  But they soon discovered that
there were too many websites.  So they opted of option 2.

If a community patron wishes to use our library computers, we will
require them to provide some type of identification, such as driver's
license, plus they will be required to sign our Network Usage Agreement.
After that, we will provide them with a temporary logon.  This logon
will expire after a period of time.

Currently we have Cisco Clean Access for our authentication, but Cisco
seems to be de-supporting the product.  So we are looking at Safe
Connect, Mirage or Bradford Networks as an alternative.

God bless,
Sam Young
CIO
La Sierra University

-----Original Message-----
From: Valdis Kletnieks [mailto:Valdis.Kletnieks () VT EDU]
Sent: Wednesday, December 20, 2006 9:16 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Public Access Library Ports (was Re: [SECURITY] Open
access to student labs

On Wed, 20 Dec 2006 14:21:05 PST, Samuel Young said:
> We require our students and visitors to logon to our network
everywhere.
> There are a few computers in the library that allow public access, but
we
> are about to close that loop as well.

Often, librarians have cows and kittens when the network people threaten
to close that loophole (for reasons that are totally justified in their
world view).  What methods and/or reasoning did sites use to win the
political battle (or equally interesting, did the library win)?