Would there be any potential problem of hosting public and/or private (vpn) services in a school office?
-
Well, I am asking also security wise. I know most schools snoop. Can they somehow see traffic through ssh or VPN? Or just the protocols, logs, dates, etc
The SSH and VPN traffic is encrypted. Unless your private keys have been compromised, nobody can see what is going over the tunnel. They can log things like the IP addresses that are connecting to it and how much data is being transferred though.
-
Obviously if public the material would be important. But private, only over ssh or vpn? Free internet, power, and backup!
I've worked for a university before and it was very common for staff to remote into their systems from home -- usually with SSH for CS types or Remote Desktop/Team Viewer/etc. for less computer-focused folks. (The former usually didn't have much issue -- the folks using the latter mechanisms got compromised a number of times... -.-) There was also a campus provided VPN that was required to access certain systems with instructions to students and staff on how to use it, but other systems just got public IP addresses.
If what you're doing is related to your work and campus IT doesn't object, you're probably fine to do it. I've run various kinds of websites and web apps for colleagues to collaborate on research projects. Being able to do things like that is kind of the point of the internet.
Having seen a number of students, uh, push the limits and find the boundaries of acceptability the hard way though... I'd strongly advise you not to install cryptominers, run TOR exit nodes, or torrent TV shows/movies/etc. That kind of thing tends to get your systems in hot water with IT or other parts of the bureaucracy...
-
It is my own device, but yes utilities and security is their own.
If you are so sure of your indemnity because it's "your device", why are you asking on Lemmy?
-
Yes, already have. It seems they don't care.
It seems they don’t care.
Then get that in writing.
-
If you are so sure of your indemnity because it's "your device", why are you asking on Lemmy?
because discussing such projects in self hosting is fun and why we are here. I wanted to hear what others thought. Ie we are in a forum.
-
because discussing such projects in self hosting is fun and why we are here. I wanted to hear what others thought. Ie we are in a forum.
Don't be flippant.
This is like going to a car enthusiast forum and asking "any potential problems with driving a car that may or may not be stolen?"
You have indicated that you're aware of the potential repercussions of running a personal project in a publicly-funded environment.You've already been told that this is unethical everywhere and illegal in many places.
-
It seems they don’t care.
Then get that in writing.
This. Get in writing the specific legally binding policies for personal use of their network resources. Not just the personal opinion of the IT people. They don't write the legally binding policy that you are responsible for following.
-
It seems they don’t care.
Then get that in writing.
Good advice!
-
I've worked for a university before and it was very common for staff to remote into their systems from home -- usually with SSH for CS types or Remote Desktop/Team Viewer/etc. for less computer-focused folks. (The former usually didn't have much issue -- the folks using the latter mechanisms got compromised a number of times... -.-) There was also a campus provided VPN that was required to access certain systems with instructions to students and staff on how to use it, but other systems just got public IP addresses.
If what you're doing is related to your work and campus IT doesn't object, you're probably fine to do it. I've run various kinds of websites and web apps for colleagues to collaborate on research projects. Being able to do things like that is kind of the point of the internet.
Having seen a number of students, uh, push the limits and find the boundaries of acceptability the hard way though... I'd strongly advise you not to install cryptominers, run TOR exit nodes, or torrent TV shows/movies/etc. That kind of thing tends to get your systems in hot water with IT or other parts of the bureaucracy...
Thanks for sharing your experience!
That’s a great point, that is exactly the point, haha. The public sites are related to the library and my research so it seems that would be allowed.
Yeah… that definitely would be too far. I’m even careful what I backup (no torrents only work) to my school machine over rsync ssh just to follow the rules.
What was the most ridiculous or funny boundary push you saw?
-
Thanks for sharing your experience!
That’s a great point, that is exactly the point, haha. The public sites are related to the library and my research so it seems that would be allowed.
Yeah… that definitely would be too far. I’m even careful what I backup (no torrents only work) to my school machine over rsync ssh just to follow the rules.
What was the most ridiculous or funny boundary push you saw?
What was the most ridiculous or funny boundary push you saw?
Trolling someone by attaching a camera to the ceiling right above their keyboard. I've been paranoid since I saw that stunt pulled... They got their point across about physical security though.
-
System shared this topic on
