Slashdot Mirror
Schools to Avoid: University of Florida
Iphtashu Fitz writes "The University of Florida has apparently come up with a technological approach to deal with P2P file sharing on their campus networks. According to this article on wired.com they have developed a program that scans the PCs of students in the UF dorm rooms. The program, dubbed 'Icarus' not only detects P2P applications but viruses, worms, and other trojans. If a P2P application is found then an e-mail is sent to the user, a message is popped up on their screen, and their internet connection is disconnected. First time offenders lose their connection for 30 minutes. The second offense results in a 5 day loss. The third strike results in an indefinite loss of connectivity. An editorial in The Independent Florida Alligator, the student newspaper, called the use of Icarus 'an invasive and annoying system that further deters students from living in dorms (see also another story).'"
From the article: If students are mistakenly identified as violating the school's policy, the burden is on them to justify what they are researching, invading their privacy in the process, [EFF attorney Jason] Schultz said.
In other words, innocent until proven guilty. What kind of intellectual environment is there at a university that intimidates students from conducting research? Now, you could argue that there are not many research projects that would be helped by P2P applications, but the school's definition of violations is so ethereal that the cautious, not-so-tech-savvy will be left afraid of his/her computer. Will downloading that PDF violate the bandwidth rules? Is this FTP server a file-sharing network? Your average students won't know for sure, and they won't test the limits for fear of losing their Internet privileges. These scare tactics will inevitably hinder valid academic pursuits.
Last spring, the university received about 40 notices of copyright violations per month. At peak file-trading periods, 90 percent of the traffic on the housing network was peer-to-peer. In an average 24-hour period, 3,500 of the 7,500 students in the residence halls would use P2P services like Kazaa.
Unfortunately you are on their network, thus your computer becomes part of their network (on campus). If you don't like the policy (and you are warned when you sign up for the DHCP access) don't connect to the network. If you don't think that ISPs are scanning computers for viruses, trojans, etc, you're wrong. I worked for ATTBI and there were quite a few people (calling in to me alone) that were infected with some sort of trojan/virus and they had been automatically disabled.
P2P applications should be blocked at colleges. Colleges are not houses of endless bandwith... 40 copyright violations a month is a pain in the ass to deal w/ (especially in this day and age). 90% of the traffic was P2P? What about Quake pings (when I was in college that's what I was concerned with) what about downloads of legitimate software? Hah, nope, just get your P2P porn movies and the latest DiVX of The Matrix Trilogy...
School to Avoid??? I would have avoided it when 90% of the bandwith was being sucked up by people sharing MP3s and porn, now maybe the bandwith is reliable and useful for stuff other than loading Google.
As far as it is detering students from living in the dorms... I have heard nothing but problems with overcrowding in dorms (3 to a room instead of 2, people living in converted lounges, being housed in hotels/motels until space becomes available, etc). You think that Universities really care about not having people in the dorms?
This is not an invasion. This is reality. College editorials are always biased bullshit. Please move along.
Sounds like they might be a little scared of lawsuits. I'd think that colleges don't have that much budget for a legal team.
Don't ping my cheese with your bandwidth!
So the university has taken a pro-active to insure that they're hardware isn't used in the commission of a crime - and people don't like it.
Now I KNOW that not all P2P users are copying music - but MOST are.
Further, you probably sign a usage agreemnt when you connect up to the school's network saying that you won't due anything illegal. All the university is doing is holding you to that agreement.
I don't see a problem here
Have you compiled your kernel today??
Set up a firewall on some old P166, build your own subnet, and lock them out. It's not hard. Mandrake MNF or Astaro are great for this sort of thing. Run a VPN between you and your friends in the dorm. Heck there's lots of fun to be had there.
Hell is being intelligent in a world full of idiots.
Avoid going to a school because it doesn't allow you to illegally get mp3s and DivX movies? If I haven't heard anything sillier, than this is it.
UF is a good school with many established majors and sciences. UF is smart to protect their university and risk getting lawsuits due to the arrogance of people.
Bring on the P2P banning in all schools! Naturally, this is Slashdot where its readers tend to bitch about everything, but we must remember that "geeks" aren't really people anyways. Just a bunch of ugly males who cannot fulfil basic human needs as showering, female interaction, and fresh air.
Using the campus network from dorms is a privledge, not a right. UofF has not only the right but the responsibility to ensure that their network resources are protected, not only from without but from within as well.
If students want to file share (legit or otherwise), or game, or whatever, without restrictions, they can drop the cash for DSL or cable.
Guess what? We're not talking about killing babies. We're talking about securing network and school resources from those who choose to use them for non-academic purposes.
Big difference there! Hopefully you'll move out of mom's basement someday and discover that.
Mac OS X and Windows XP working side by side to fight back the night.
This is by far the dumbest method of controlling P2P traffic I've ever heard. At Kansas State, you can have any P2P program you want on your harddrive, it's just not gonna give you any performance at all. I know the guy who does the "bandwidth shaping" as they call it, and he's real, real good. Honestly, I have no idea how it works, but he's given several talks on the topic of eliminating p2p traffic on college networks. All he'll tell me is it doesn't work by port numbers, it doesn't work by IPs and it's not protocol specific. Yet within 2 or 3 days of a new p2p program being released transfer rates for it are crushed down to the 0.1 k/sec range.
That's the best solution. Let the students have whatever programs they want on THEIR computers, but control YOUR resources appropriately.
--Stupid Sig Here--
Here at the university I work for we have had the hardest time trying to get students to look at the big picture, how their obsessive game playing, compulsive downloading of music/movies/porn (sorry, I had an exam in psych today and it appears to be showing!) and obvious script kiddie hacks of other web sites slow down the entire internet for everyone.
Any given day we'll get a call from some kid who's complaining that his WarCraft 3, his KaZaA, and his port scanner are running way too slowly and he wants us to fix it NOW!
Basically what it boils down to is this: The network itself belongs to the university and, as such, must fulfill the mission statement as laid out by the university officials. Here at UWP we state very clearly that the internet/network are to be used for official university business only and incidental personal use of the network/internet is OK as long as it doesn't interfere with university business.
P2P does interfere by drawing bandwidth from, say, Financial Aid, who is, at the same time, trying to submit FAFSAs to the Federal Gov't. Students can be very short-sighted, and while I sympathize with them, I can't see why they don't realize that the other 1600 people on the network besides them all are competeing for the same resources. Maybe someday they'll learn.
"This food is problematic."
Because Daedalus was the worrywort engineer who kept trying to prevent Icarus from flying to close to the sun and getting himself in trouble?
It'd be a much better analogy from that angle - as it would equate the file sharers to Icarus, the wings to Kazaa and the Sun to the RIAA.
Calling the watchdog app Icarus... well it's just begging to fall into the Ocean and drown.
or maybe that was their actual intent...
// "Can't clowns and pirates just -try- to get along?"
" Using the campus network from dorms is a privledge, not a right. "
Breathing air from dorms is a privledge, not a right.
Playing music on your guitar is a privledge, not a right.
Staying up past 11 PM on a weeknight is a privledge, not a right.
What, in your twisted little world, exactly is a right?
Its in school owned facilities, and you sign away privacy rights when you move in anyway..
its THEIR place.. not yours.. and they have the right to prevent illegal acts on their property.
Should they do this, no. its in bad taste, but legally they can..
---- Booth was a patriot ----
Being a dorm rat, I can say that I have a large group of friends, including myself, who stay in the dorm becuase of the network. It's a lot easier to play games // connect to servers from the dorms. With this restriction on P2P applications, they'll push out the students stay in the dorms there for the high speed connection.
And, really, the showers aren't that bad.
bwah-ha-ha-ha
Wow, what a wonderous world we live in where students can recieve e-mail when their internet connection is hosed *goes wide eyed*
Doesn't seem that wonderous to me, but maybe I'm just getting old.
I can remember being on the Oregon State University campus, and being within 5 minutes walk from no less than 4 student computer labs, one of which was open 24-hours!
On top of that, when I worked in IT and we used to kill someone's dialup account (remember dialup?) if they were connecting with a terminal they would get a message to call us so the situation could be resolved. When the dorms were outfitted with network jacks, there were technical people living in each dorm to help coordinate this sort of situation, you could just walk upstairs/downstairs.
And if you weren't a total recluse, you could probably get onto one of your neighbor's computers to check your email...
"There are people who do not love their fellow human being, and I _hate_ people like that!" - Tom Lehrer
So as far as I understand, if it detects that you have a trojan or virus, you get disconnected.
Moral issues aside of whether they should be running P2P software or not, doesn't this cause a problem for the person who now has a disconnected computer with a virus or trojan and can't go do his "auto-update" to get the latest virus defs?
Or other, relatively low-bandwidth server applications - like a MUD, or a small 8user, private game server? These are relatively low bandwidth, especially the MUD example, and do not interfere with legit research access to the internet.
;)
You say they can't possibly be legit if they're running a server that would be caught by Icarus. Think of this:
-You're a student running a cvs tree off your box for an open source project. You get shut down because of the ports being used.
-You're a student writing some kind of server application for a computer science degree. You decide that it works well enough to run it on your own box so you can more easily monitor it. You get bumped off the 'net for doing research.
-You set up a private Natural Selection server and only give the password to people on campus. While this isn't "legit" like the other two examples, it does not use the external bandwidth of the university - only the internal LAN bandwidth. They pay for the hardware to accomplish this, not the bandwidth used like an external connection. While it's not "legit" per se, it really isn't that harmful either.
-You decide to run SSH on your box in your dorm room, so you can access files and applications on your personal computer from anywhere on the university, with your ssh client diskette. Even though I commute to college, I use this method to truck files back and forth to class without the headache of an ftp server or using an external storage space, like a web server. Not to mention, it's faster than uploading it to a web server.
All of these are actions which would result in your network rights revoked at this university. While it fixes one problem, it creates many, many more. It's not viable, and I'm just glad I didn't decide to transfer to Florida
What a bunch of asshats. These people are blocking IRC and kicking people off of it. I'm sorry, but if I got punted from my school's network for chatting on IRC -- something that uses like 1k of bandwidth every 10 minutes or so -- I'd be telling them some creative uses for Cat5 and their spinchter.
Last time I checked... my network, my terms. No excuses, no exceptions. I don't allow people who visit my building to join their typhoid-mary laptops to my network, ever. I don't allow our employees who bring their typhoid-mary laptops to join my network, ever. If the box is out of my control, its hostile. Period. (Welcome to Windows, btw...)
A college LAN is different, why... exactly... the school is accountable for the network, and therefore must have authority over it. OTOH, with a student who has no accountability for its use, HOW can they have any authority over how it's used? Would YOU accept being on the wrong end of that relationship? With someone else using your stuff? And you're responsible for the results?
Problem is... students have full authority, and it's pretty much unchecked. So, FL is implementing a measure of accountability. Yep, real far-fetched.
And sure, a few knee-jerks will say that the students pay for the school, and that money allows the network to exist, so it's theirs.
And god bless 'em. Here, we've got a couple hundred thousand people per year who cause our income, so the next time you walk into a business... just sit down at a keyboard, and start typing. See how far your "I paid for this" argument gets you in court. No, really... see if they buy it.
help me i've cloned myself and can't remember which one I am
What I find absolutely amazing though, is that after reading slashdot posters calling time and time again for net admins to cut off virally / worm infected computers from the net, I haven't seen a single post saying "You go U of FL! Thanks for trying to curb the propagation of malicious programs!"
I for one applaud U Florida's decision to move
ahead with this. After all, it is their
network which is being used to commit these crimes.
However I must admit to being disappointed at
the limited scope of their action. U Florida
still allows students to use its phone
system to plan criminal activities. Students can
freely board the campus shuttle, using it to
transport contraband. And the privacy provided
by the University's bathroom stalls is an open
invitation for illegal drug use.
Until UF begins monitoring all phone conversations,
strip searches anyone boarding a bus, and mounts
surveillence cameras in all of the toilets, their
facilities will continue to be used for criminal
activities and the university, by association,
will be responsible for all that occurs.
-deane
It's their network. They get to make the rules. They get to enforce the rules.
If some kid doesn't like that, seems to me he can use another network (like, just maybe, a local ISP) or hire a lawyer and sue the school.
Or, just move out of the dorm.
Condos and apartments also have rules. Why should students be expected to be treated differently.
And please don't whine at me about all those poor, poor students who can't afford to move out of a dorm or even pay a local ISP. Shoulda read those rules before moving in.
Ditto for the "but they need the Internet to further their education" whine. These guys aren't using p2p to download Plato.
-- Slashdot: When Public Access TV Says "No"
This makes me feel much better about the program. The original article made it look like it was actually examining the computers for the programmers. This is more like keeping a log of what phone numbers call in and which get called without recording the conversations. Still something of an invasion of privacy, but not as obtrusive as it appeared.
I agree that you have to search out and stop those that waste bandwith on such things, but wouldn't it be easier just to block those ports at your own routers? I know some ISPs block outgoing connections to port 25 to prevent spammers from relaying through open SMTP servers. Couldn't you just block the appropriate ports and be done with it?
Good, inexpensive web hosting
There is no need to guess about what the code base is or how this tool operates. Florida has something called the Sunshine Law. This tool is not security related and does not appear to fall under any other excluded category so it it has no protection from the sun. All anyone has to do to get the code and any documentation is invoke the Sunshine Law.
~Peace~
That's a whole lotta whining, but let's look at the facts.
1) Uploading of copyrighted material is illegal
2) The University, as an ISP, is legally responsible for what its users do, thanks to the DMCA
3) ~90% of file transfers over P2P are copyrighted material and illegal
4) There's no realistic way to tell if any given file being transferred over the network is legal or not
Based on the above, why exactly do you feel that the University should expose itself to lawsuits from the RIAA just so a small percentage of the student body can use P2P for legitimate use?
What use can you come up with that is not available elsewhere, such as using an FTP site or website?
I dislike the RIAA as much as anybody, but there is not a lot of leeway without the potentialof being sued.
So they should be allowed to crank up their stereos as loud as they want? How about smoking in the hallways? Why not let them crap in the sinks when they feel like it? It's their home, isn't it?
No, it's not. It's the collective home of everyone living in the dorm. As such, the residence of said dorm should behave in ways that do not unfairly infringe on the comfort and livability of other students.
And just like students should be respecting the rights and comfort of other studnts, they should be respecting the access rights of other students. Hogging the network downloading boatloads iof music and DivX rips of movies is hardly fair to the students trying to do research, read email, or do other "legitimite" business on the network.
The network, like life, isn't just about you. Stop being so selfish for a while.
Boobies never hurt anyone. - Sherry Glaser.
Non sequitur. All file sharing is banned, whether legitimate or not
2) The University, as an ISP, is legally responsible for what its users do, thanks to the DMCAJust the opposite. The DMCA gives a safe harbord to any ISP, UF included, provided they comply with requests for takedown and/or subpeonas, which they would have to do anyway.
3) ~90% of file transfers over P2P are copyrighted material and illegal
Even if that is correct, 10% is a more than substantial non-infringing use.
4) There's no realistic way to tell if any given file being transferred over the network is legal or not
And that is not a business UF should be in. Neither should it be in the business of blocking any collaboration between individuals on the chance that a student might do something illegal. Prior restraint of speech has no place at a university.
One CPU cycle wasted on digital restrictions management is ONE TOO MANY.
> Just wait until you have your first First Amendment case. I assume UofF is a part of the State of Florida. They are bound by free speech rights.
And, presumably, the university is more than willing to allow students to exercise those rights on their own dime. That you're permitted to speak your mind does NOT mean you're permitted to make someone else pay for it.
Besides, no judge in the world will believe "but I wanna download the new Britney video!!!!" is a matter of free speech.
Maybe it wasn't clear from the article, but Icarus scans only the housing network, to which the president, provost, etc. do not connect. Think of the housing network as an entirely separate segment of the overall UF network.
And assuming you were clever enough to say, spoof a housing network router's IP, you'd probably (1) get a lot of your friends pissed off at you for taking them offline, and (2) get kicked out of campus housing for violating the living agreement.
Technically, couldn't someone check what services are running on my PC right now without violating my rights legally.
Can I not say that checking for P2P is just like entering my IP into a web browser to see if there is an HHTP daemon on my machine? Finally, couldn't you install a software firewall to make sure the machine can't be "scanned?"
Someone, please fill me in here.
Wh47 d1d j00 541, 31337 15n't t3h r0xor5 ne m0r3???
Want to hear a legitimate use for P2P?
;)
An assignment a music appreciation professor (yes a professor) gave his students.
He asked each and every one of us to find at least 3 indie bands, name the song we liked, why we liked it, and how the band came to your attention.
Not one single person in that class completed the assignment without using a p2p app...the prof even suggested it at more than one point.
The sad part about it was several locals didn't get mentioned at all...and the even sader was the girl who went on and on and on about this band until someone pointed out it was Metallica
UofF IT: Let's build a killer VB app that automagically disconnects connections based on bandwidth usage and port scans! It will be new and exciting and make us look leet.
Competent IT: We already have several options available to curb p2p abuse and prevent viral infection, used widely throughout the industry with great effectiveness while keeping end users happy.
I realize I don't know the whole story, so I can't say this wasn't their only option with any certainty, EXCEPT for this..
Disconnecting the user is ridiculous. The punishment doesn't come close to fitting the crime, actual copyright infringement not withstanding. In the real world, where companies don't have the luxury of giving a big "FUCK YOU BITCH!" to our customers, bandwidth abusers are capped, not severed from the network. Keep the policy but change the rules to
1. The first time a notice will come up to cease
and desist.
2. Second time bandwidth is capped at 28800bps. Let them live with old modem speeds for a few days, and see what life will be like.
3. Third and final infraction: Bandiwdth permanently capped at 28.8. If they want a greater level of service they can either pay for it, or find another service provider.
This seriously smells like a case of too much self importance of the IT staff. This can (and quite possible should) be maintained and managed away from the application layer.
Or maybe Icarus is just some super duper app that we'll all be switching over to windows to run on our corporate networks, because it is just that badass.
Everyone is entitled to their own opinion. It's just that yours is stupid.
-- Will program for bandwidth
Ok, so lets say I SSH tunnel to an offsite server and do all my stuff through this tunnel. Sure, I may use a lot of bandwidth, but it's all encrypted and you have NO proof what I'm sending is non-academic. Hell, I could be transferring video files for a presentation for class. How could you tell?
I think you'd have a hard time prosecuting in court without proof of what was actually being transferred...
Tim Dorr
Owner/Manger
A Small Orange