Network acceptable use policy
From Interlock Rochester Wiki
(→Network Acceptable Use Policy) |
(→Definitions) |
||
| Line 7: | Line 7: | ||
* Production Network: Official Interlock approved and managed services. | * Production Network: Official Interlock approved and managed services. | ||
* Project Network: Interlock member network services managed by individuals | * Project Network: Interlock member network services managed by individuals | ||
| - | * Warzone: Information security sandbox zone that may have malicious services. | + | * Guest Network: Interlock managed guest access for visitors and friends of Interlock. |
| + | * Warzone: Information security sandbox zone that may have malicious services. | ||
== Preamble == | == Preamble == | ||
Revision as of 23:42, 30 September 2010
Contents |
Network Acceptable Use Policy
Definitions
(This is a draft and has not been approved by legal council)
- Production Network: Official Interlock approved and managed services.
- Project Network: Interlock member network services managed by individuals
- Guest Network: Interlock managed guest access for visitors and friends of Interlock.
- Warzone: Information security sandbox zone that may have malicious services.
Preamble
The rules that comprise this Code of Conduct apply to all areas of computer use at Interlock Rochester, including all computers, storage devices, networks, and network devices owned or managed by Interlock Rochester, including any for which Interlock Rochester contracts with a third party. The network infrastructure group is responsible for publishing, and in concert with members of the Interlock Rochester community, enforcing this Code.
A variety of computer resources are currently available at Interlock Rochester, from local area networks that provide access to PC, Mac, and *nix based software, to wide area networks such as the Internet. All users are required to follow this Code of Conduct when using these resources.
Any information stored on Interlock Rochester computers, or with third party providers under contract by the group, may be stored digitally in multiple live and backup sources and, aside from the usual difficulties of guaranteeing confidentiality, is always subject to "discovery" by means of subpoena. Although the group may seek appropriate legal counsel, users should assume that the group will cooperate with outside agencies investigating violations of local, state, or federal law, including but not limited to copyright infringement, child pornography, or other illegal content.
Violation of the Code can lead to:
- Suspension of membership privileges
- Criminal Prosecution
Rules of Conduct
All Networks
- You may not give out your password.
- You may not let another person use your account.
- You may not copy, retain, or distribute copyrighted or proprietary material without written consent of the copyright holder.
- Individuals who store sensitive or confidential information on their computers are accountable for that information and must make sure the appropriate security (encryption, etc.) is in place.
- Interlock Rochester reserves the right to remove any technical resource (computers, software, network devices, etc.) that it deems a risk to security, network, or over consumption of resources.
- Interlock Rochester takes no responsibility for damage caused to personally owned equipment.
Production and Project Networks
- You may not possess or attempt to possess another user's password
- You may not use false or misleading identification to gain access to any computing resource.
- You may not use any computing resource that you are not authorized to use.
- You may not use an account for any purpose other than that for which you are authorized.
- You may not change, copy, delete, read or otherwise access files or software without permission of the owner (in the case of user files) or system administrator (in the case of system specific files).
- You may not attempt to prevent others from accessing any computing resource.
- You may not attempt to bypass accounting or security mechanisms, or attempt to circumvent protection schemes or uncover security loopholes. If you find a security loophole, you are required to report it to the network infrastructure group immediately.
- You may not use any Interlock Rochester computing resource, including the network itself, to attack, disable, or gain unauthorized access to any other computing resource either on or off the Interlock Rochester network.
- All personally owned equipment connected to the Interlock Rochester network is the responsibility of the owner of that equipment. We strongly encourage you to be running an effective and currently updated anti-virus software package and have all operating system patches installed.
- You may not attempt to compromise the privacy of others. This includes, but is not limited to, the installation of traffic sniffers, key loggers, etc. or any other hardware or software designed to capture information which you are not authorized to have without the consent of the network infrastructure group.
Web Access Policy
The Production and Project networks shall have internet access. Regardless of network, the following rules apply:
- Use of the Internet for any unlawful purpose is prohibited. This includes, but is not limited to:
- posting, storing, transmitting or disseminating information, data or material which is libelous, obscene, unlawful, threatening or defamatory, or which infringes the intellectual property rights of any person or entity, or which in any way constitutes or encourages conduct that would constitute a criminal offense, or otherwise violate any local, state, federal, or non-U.S. law, order, or regulation;
- initiate, perpetuate, or in any way participate in any pyramid or other illegal scheme;
- participate in the collection of e-mail addresses, screen names, or other identifiers of others (without their prior consent);
Data Retention Policy
Interlock Rochester does not intentionally maintain any meaningful records about network users or computers and their associated network traffic unless compelled to do so by a legal order. Any data that is collected for network diagnostic or educational purposes is destroyed as soon as the diagnostic or educational session is complete. The only semi-permanent records we may opt to maintain are:
- DHCP records (stored for the duration of the DHCP lease)
- This includes a correlation between a MAC address and IP address
- Captive Portal Registration
- These records may include a correlation between a user account and an associated MAC address
- Door access logs
- Correlation between a user account and when they unlocked the door to locations managed by Interlock.
- Records containing member contact information and emergency contact information may be stored electronically and made available to other members of Interlock Rochester.
- Information about current membership status may be made available to 3rd parties in the form of a true / false response when queried by a unique identifier.
Traffic sniffing and logging is allowed on the "warzone" network, however Interlock Rochester itself makes no attempt to maintain these records.
We reserve the right to collect and analyze traffic on Interlock Rochester networks for the purpose of diagnosing and troubleshooting network and bandwidth issues.
