Slashdot Mirror

← Back to Stories (view on slashdot.org)

Schools to Avoid: University of Florida

Posted by michael on from the vote-with-your-dollars dept.

Iphtashu Fitz writes "The University of Florida has apparently come up with a technological approach to deal with P2P file sharing on their campus networks. According to this article on wired.com they have developed a program that scans the PCs of students in the UF dorm rooms. The program, dubbed 'Icarus' not only detects P2P applications but viruses, worms, and other trojans. If a P2P application is found then an e-mail is sent to the user, a message is popped up on their screen, and their internet connection is disconnected. First time offenders lose their connection for 30 minutes. The second offense results in a 5 day loss. The third strike results in an indefinite loss of connectivity. An editorial in The Independent Florida Alligator, the student newspaper, called the use of Icarus 'an invasive and annoying system that further deters students from living in dorms (see also another story).'"

17 of 829 comments (clear)

  1. Schools to no longer avoid! by garcia · · Score: 5, Insightful

    Last spring, the university received about 40 notices of copyright violations per month. At peak file-trading periods, 90 percent of the traffic on the housing network was peer-to-peer. In an average 24-hour period, 3,500 of the 7,500 students in the residence halls would use P2P services like Kazaa.

    Unfortunately you are on their network, thus your computer becomes part of their network (on campus). If you don't like the policy (and you are warned when you sign up for the DHCP access) don't connect to the network. If you don't think that ISPs are scanning computers for viruses, trojans, etc, you're wrong. I worked for ATTBI and there were quite a few people (calling in to me alone) that were infected with some sort of trojan/virus and they had been automatically disabled.

    P2P applications should be blocked at colleges. Colleges are not houses of endless bandwith... 40 copyright violations a month is a pain in the ass to deal w/ (especially in this day and age). 90% of the traffic was P2P? What about Quake pings (when I was in college that's what I was concerned with) what about downloads of legitimate software? Hah, nope, just get your P2P porn movies and the latest DiVX of The Matrix Trilogy...

    School to Avoid??? I would have avoided it when 90% of the bandwith was being sucked up by people sharing MP3s and porn, now maybe the bandwith is reliable and useful for stuff other than loading Google.

    As far as it is detering students from living in the dorms... I have heard nothing but problems with overcrowding in dorms (3 to a room instead of 2, people living in converted lounges, being housed in hotels/motels until space becomes available, etc). You think that Universities really care about not having people in the dorms?

    This is not an invasion. This is reality. College editorials are always biased bullshit. Please move along.

    1. Re:Schools to no longer avoid! by LostCluster · · Score: 5, Interesting

      This really is a matter of people being given an inch, then taking a mile, and wondering why they're being pushed back now.

      If you play by the rules, campus Internet access is a beautiful thing. However, it's the P2P bandwidth hogs that ruin the party for everyone.

      There's no need for P2P to download anything when you've got such a fast connection to Internet2 at your fingertips. Either your school or one nearby will have all the Linux ISOs and other free-to-download programs you'll ever need.

    2. Re:Schools to no longer avoid! by cybermace5 · · Score: 5, Insightful

      I 100 percent agree with you on this. UoF's killing P2P and trojans/worms on the campus network should be a reason to consider going there more, if anyone's looking.

      Let me tell a little story. Napster arrived during my second year of college (a small highly-acclaimed private engineering school). Bandwidth didn't suffer too badly, we had 1500 students on the network with mandatory laptops, and though we maxed out our dual T1's we were still able surf the web and get halfway decent ping rates.

      The next year, Kazaa and friends arrived, along with the new freshman laptops with large, empty hard drives. Within weeks, the campus network was unusable. You literally could not surf the web, research online journals, download drivers and development software and other legit uses of the network. No one even tried gaming. Yet, the bandwidth leeches could open a hundred connections and download music at useful rates...it was only the legit applications suffering here. I actually dialed my laptop out to a local ISP in order to get better access.

      The situation was so bad, the computing center had to call a "town meeting" to try to work out what the problem was, and allay the obvious anger that many students felt at being able to download at rates less than 2K/s. Hundreds of students showed up, standing room only, it went overtime. The upshot was that a couple months later, our bandwidth was doubled to four T1 lines.

      The fun lasted for about two days. After that, the situtation was just as bad. Then our computing department took action: they ran traffic analysis and determined what the percentages were. Over 70% of our bandwidth was going to Kazaa. The top 10 bandwidth users were accounting for over 50% of of the bandwidth. We were notified that traffic shaping was immediately going into effect; during daytime hours the traffic determined to be "non-essential" would be throttled to something like 10%, and it would rise to something like 30% max during the night and weekends. A couple people got their ports disabled, and all "non-essential" traffic was disabled in the classrooms. Apparently, since we had ethernet ports at every desk, a lot of filesharing was going on during classtime!

      The effect was instant: pure heaven. Fast page loads, excellent ping times, no more dropped connections. P2P was the worst thing to happen to the college network scene. I happen to know that some of my work was affected by being unable to do research as quickly, since many of the electronic journals we had access to were hosted online. I think the best thing a college can do is block or reduce P2P programs, and let students do what they ostensibly are at college for.

      --
      ...
  2. Icarus by mopslik · · Score: 5, Funny

    The program, dubbed 'Icarus'

    What are the odds that this program is running on a Sun machine?

  3. Switchable MAC address... by SnowDeath · · Score: 5, Interesting

    So, what happens if a kid brings their netgear MR814 router with them and every time he gets cut off, he simply changes the Internet-side MAC address of the router through the handy-dandy html-based admin tool?

  4. Re:Anti-Intellectual Environment by johnmearns · · Score: 5, Insightful

    Being unable to access the internet at all would hinder them more though. Bandwidth is expensive, and in a dorm it can easily be sucked down into nothing by p2p apps. Which is better, forbid p2p in what might prevent one or two students from doing something academic with it, allow it under the guise of academic freedom but causing a slowdown to the extent that no one else can do homework, or increase housing costs to cover the bandwidth used? Practicality is the point, not trying to be mean.

    --
    "I may disagree with what you have to say, but I shall defend, to the death, your right to say it." -Voltaire
  5. Good for them by jayhawk88 · · Score: 5, Insightful

    Using the campus network from dorms is a privledge, not a right. UofF has not only the right but the responsibility to ensure that their network resources are protected, not only from without but from within as well.

    If students want to file share (legit or otherwise), or game, or whatever, without restrictions, they can drop the cash for DSL or cable.

  6. An Inside Perspective by Anonymous Coward · · Score: 5, Informative

    I am currently a sophomore at the University of FL who works part time as part of the campus network ops group. This provides me an intimate knowledge of how Icarus works.

    Icarus is a VB application which attempts to connect to the standard ports used by the various P2P apps. If it is able to connect to one of these ports, the IP is marked as suspect in the central DB.

    Addresses marked as suspect are then sniffed, and all packets going to and from that IP are logged to a central server. The RIAA has already subponeaed most of this data for further analysis (and more lawsuits, I would expect).

    Hope this helps
    -sk

    1. Re:An Inside Perspective by numatrix · · Score: 5, Informative

      That's nice, but you didn't tell them the whole story. I work at the as one of only three full-time security people for the whole university, so you probably know me. Let me fill in the gap.

      The system is more than just a port scanner. If you think you can evade it simply by blocking probes, you're dead wrong. The system is more than that, it also incorporates passive monitoring. Here's a hint. There ain't no way to disguise high bandwidth. No encryption, no port changes, nothing that will hide that. If you're downloading massive amounts of data, you will be found. Period.

      Also, for those people who are arguing about morality, ethics, service, responsibility, priveledges, whatever, it's a moot point.

      When you move into the campus housing, you sign a legal document to the effect that you will not run P2P. No, it's not illegal to run it, but it ~is~ a violation of your living agreement, and housing is well within their rights to shut you off or take other action for P2P or abuse of services (as many other posters have noted, the few that abuse the service often make it unusable for those who legitimately need it).

  7. Re:Anti-Intellectual Environment by andrew_0812 · · Score: 5, Insightful

    Fine. Prohibit P2P. The university owns the bandwith, they can block it, scan it, whatever. But invading the student's PC's is an invasion of privacy. This isn't even like watching employees. In a company, the PC belongs to the company, not the employee. These are the student's personal computers. The school has absolutely no right to scan the systems. The student is therefore totally liable for anything illegal found on that PC. The university should limit its power to scanning internet traffic.

  8. Re:Anti-Intellectual Environment by 4iedBandit · · Score: 5, Interesting
    What kind of intellectual environment is there at a university that intimidates students from conducting research?

    So you want to complain about it? How about offering a valid solution? P2P apps soak up bandwidth. Viruses soak up bandwidth. Johnny Student is sharing 500 gigs of dvd's from his PC, and Jane Student has every virus known to man on her PC. Those two students alone are soaking up the available bandwidth and denying other students the ability to conduct legitimate research.

    What kind of intellectual environment does not monitor their network to ensure that it remains available for legitimate use? If you want unhindered P2P, get a private connection. If you can't be bothered to protect your computer from viruses, get a private connection. Why shouldn't people face the consequences for their actions? Why should the truely innocent users pay for the abuse of those who can't be bothered to think of anyone but themselves?

    There is only one body that can ensure that the campus network remains viable for all students. That's the campus body that runs the networks.

    It's no surprise that any research requiring an inordinate amount of resources has to be justified. If the student is really researching something and they require more bandwidth, they should either justify it to the university or get their own private connection.

    They may be paying for use of the network, but so are the hundres (or thousands) of other students. Bandwidth is not unlimited and the campus agency responsible for it has to make sure it's available for legitimate purposes.

    --
    "The avalanch has already started, it is too late for the pebbles to vote." -Kosh
  9. Re:Anti-Intellectual Environment by Stackis · · Score: 5, Informative

    I work for the UC system as a Sys Admin, and couldn't agree w/you more. Too many students seem to plug their machines into the Resnet, and not bother about AV software, or the bandwidth wasted when they share large files over the network. I think what U of F is doing is nothing but protecting their network from the inevitable...

    --

    "Look where we worship" -- Jim Morrison
  10. Re:Anti-Intellectual Environment by bongoras · · Score: 5, Insightful

    that's nonsense. Most schools ( and I'm a unix admin @ one ) have Internet connectivity that was purchased with grant money in the mid to late 90s. Dual T1s, maybe for a large school like Florida a T3. There are a few places with big I2 connections, true, but Internet 2 is only for connecting to other places with I2, so it's still necessary to maintain a conventional internet connection.

    please be a little bit more well informed before shooting off your mouth. Bandwidth is expensive and not plentiful.

  11. Re:Anti-Intellectual Environment by James+Lewis · · Score: 5, Informative

    The issue here is the invasion of privacy. There are plenty of ways to control bandwidth usage without doing this. My college (Ga Tech) had huge problems with p2p software taking up all available bandwidth. For about two semesters the pings were 1000 even to across the street, and the network was almost unusable because of this. Finally Ga Tech did something smart: they updated the hubs so that they could limit everyone to 60 kb/sec upload on a port by port basis. The vast majority of traffic created by P2P is from uploading. Now everything runs smooth.

  12. Re:Anti-Intellectual Environment by secolactico · · Score: 5, Insightful

    Bandwidth is expensive and not plentiful

    Somebody mod parent up.

    A lot of people have the idea that bandwith is "air" not taking into account the costs associated with maintaining a high speed connection. Oversubscription is the only thing that makes it profitable and if too much of the bandwith is constatly bogged by P2P applications then everybody loses.

    Same goes for people who pays $50 bucks for a 256K ADSL and the complain about not getting sustained 256K 24x7.

    --
    No sig
  13. And what about legit uses? by bishiraver · · Score: 5, Insightful

    Or other, relatively low-bandwidth server applications - like a MUD, or a small 8user, private game server? These are relatively low bandwidth, especially the MUD example, and do not interfere with legit research access to the internet.

    You say they can't possibly be legit if they're running a server that would be caught by Icarus. Think of this:

    -You're a student running a cvs tree off your box for an open source project. You get shut down because of the ports being used.

    -You're a student writing some kind of server application for a computer science degree. You decide that it works well enough to run it on your own box so you can more easily monitor it. You get bumped off the 'net for doing research.

    -You set up a private Natural Selection server and only give the password to people on campus. While this isn't "legit" like the other two examples, it does not use the external bandwidth of the university - only the internal LAN bandwidth. They pay for the hardware to accomplish this, not the bandwidth used like an external connection. While it's not "legit" per se, it really isn't that harmful either.

    -You decide to run SSH on your box in your dorm room, so you can access files and applications on your personal computer from anywhere on the university, with your ssh client diskette. Even though I commute to college, I use this method to truck files back and forth to class without the headache of an ftp server or using an external storage space, like a web server. Not to mention, it's faster than uploading it to a web server.

    All of these are actions which would result in your network rights revoked at this university. While it fixes one problem, it creates many, many more. It's not viable, and I'm just glad I didn't decide to transfer to Florida ;)

  14. P2P is *horrible* for networks by Alioth · · Score: 5, Informative

    I disagree with scanning people's PCs.

    However, P2P sharing is the *worst* thing your network can be beset with. The leeches hog incredible amounts of bandwidth. Kazaa et al. are also very network hostile with measures to get around a sysadmin's attempt to shape traffic.

    It takes more and more admin time just blocking malware and P2P music sharing. The university network is there primarily for academic purposes, not wholesale music piracy.

    It's a frigging nightmare. If I were a University admin, my goal would be to not block ports or traffic because I want proper end-to-end connectivity. But then you get the cancer that is Kazaa which actively tries to evade your attempts at sharing traffic. The only route left for the admin is a strict anti-music sharing policy. If only the leeches could control themselves instead of getting not only their mouths in the trough, but their front trotters too, it wouldn't be such a big deal. But of course, they show no restraint.

    If I were a university admin, I'd make it very plain what the policy is when students get their connection. The policy would be no music sharing, no spam, no malware (if you want to share legitimate music, then you either put it on the music department's website or rent your own server). Anyone caught sharing music otherwise would have their account locked and would have to come to me for a bollocking. Three offences and it'd be disciplinary action.

    --
    Oolite: Elite-like game. For Mac, Linux and Windows