ResNet - St Leonards

• FAQ's
• I have a problem with my ResNet laptop.
• Laptop specifications
  for the 09 - 10 term.
• Leaving ResNet.

---

Privacy on ResNet.

This page describes the network monitoring that takes place on ResNet. We don't believe that this activity is a threat to the privacy of ResNet users. We do believe being up front about what we are doing and why is the best way to encourage trust between ResNet users and ICT Services staff. All monitoring is performed under the Schools policy for the investigation of computers designed to protect the privacy of staff and students.

"What do you do?"

Compliance checking.

All systems connected to ResNet must meet a minimum security standard - they must have certain service packs, security patches and anti-virus software installed. We may check this both when users first connect to ResNet and during the time they are connected. We currently use Sophos End Point Security, Microsoft Internet Security and Acceleration 2006 and GFI Web Monitor. We only perform checks to ensure that the system is secure, up to date and free of viruses. We do not look at other files such as personal documents, photos, etc.

Monitor network traffic.

We monitor network traffic flows (eg volume of data, source, destination, and tcp/udp port number). We look at general trends and then may investigate particularly large flows or otherwise anomalous traffic, as this can or overwhelm network links reducing the service for other users. In this context we don't look at the content of the data.

However, the most common cause of high traffic levels is peer-to-peer file sharing software, and most material on peer-to-peer networks is illegally reproduced copyright material. The use of peer-to-peer file sharing software application on ResNet is not permitted and anyone found to be using such a system will have their ResNet account suspended pending further investigation.

"What don't you do?"

We do not routinely look for content that may be illegal or breach School regulations without due cause. The only routine monitoring is to the extent necessary to ensure the security and correct operation of the network.

Do you ever do more?

Yes. We may do in exceptional circumstances (e.g. if we are required to monitor data by the police as part of a criminal investigation).

What do other organisations do?

Other organisations may monitor data traffic present on their internal networks. Once data leaves our network we have no control over it and no knowledge of what happens to it. For example, record labels and movie studios routinely monitor the use of peer-to-peer file sharing networks to look for people uploading and downloading their copyright material. They contact us if they find a School account doing so, and we then act on the information received according to the School regulations.

What about malicious Internet users?

Unauthorised malicious users, including organised criminals, may intercept data you send over the network and the Internet, unless it is securely encrypted. Most Internet traffic, in particular email, is unencrypted and can be read by others. Never put your credit card number, password, bank account details or other confidential information in an email.

It is very easy to forge the sender information in an email. Be aware of ID theft - fraudulent emails and web sites which look like the real thing but are designed to trick you into disclosing your details. If you receive an email supposedly from your bank asking for financial details or personal information do not click links, reply or respond to it in any way via email or a web site.

Any questions?

If you have any questions or concerns about security or privacy on ResNet please speak to the house staff who will raise your concerns with ICT services.