[63461] in North American Network Operators' Group
Re: Security v. Privacy (was Re: Is there anything that
daemon@ATHENA.MIT.EDU (David A. Ulevitch)
Mon Oct 6 10:21:51 2003
In-Reply-To: <Pine.GSO.4.44.0310052358120.3286-100000@clifden.donelan.com>
Date: Mon, 6 Oct 2003 09:21:16 -0500 (CDT)
From: "David A. Ulevitch" <davidu@everydns.net>
To: nanog@merit.edu
Errors-To: owner-nanog-outgoing@merit.edu
<quote who="Sean Donelan">
> On Sun, 5 Oct 2003, David A. Ulevitch wrote:
>> > How many times did you disable the same user's network access because
>> > they didn't actually fix their computer but told you it was fixed?
>>
>> Just once, if they weren't patched they were automatically turned down
>> again. (automated, not human processing)
>
> Forever? So the student can never use the university network again
> for as long as he or she remains at the school? Even if he or she
> promises the computer is really fixed this time?
Every dorm has a "residential computer consultant" who can throw the
student's MAC_ADDR into a form and have it removed from the blocks. Doing
this let's them get a routable IP address again. If they are still
spewing traffic or other ungoodness they are blocked within a couple
minutes. The students *want* to get their machines fixed when the realize
thay lying about fixing it doesn't work.
-davidu
>
>
----------------------------------------------------
David A. Ulevitch
Washington University in St. Louis
http://david.ulevitch.com -- http://everydns.net
----------------------------------------------------
