On Wed, 2005-03-09 at 14:38, Scot L. Harris wrote: > > > > > The same basic security principles > > > should be applied in a University setting as are applied in the business > > > world. > > > > Perhaps for their internal business operations, but for general access > > not many of the same assumptions apply - certainly not the one that > > says all the good guys are inside the firewall and all the bad guys > > are outside. > > I never made that assumption. That is precisely the reason to have > segregated networks internally, most threats in the real world come from > inside. How does segregating networks help in an environment where people often are not physically near the machines they need to use? A business might provide VPN service with crypto devices for each employee and have the IT staff to maintain the needed authorization and access control. A university probably can't except perhaps for its internal business operations. -- Les Mikesell les@xxxxxxxxxxxxxxxx
