How to create shared services that two different parties can use

To mitigate a problem common to educational facilities, the student hacker, network security expert Mike Chapple suggests isolating student and administrative networks or creating shared services that both parties can use. Learn how to accomplish this task in this Ask the Expert Q&A.

Mike Chapple, University of Notre Dame

I manage the computer systems for a university. We have a local Win2k network domain with an intranet Web site and Exchange 5.5 Server running on it. Sometimes our students try to hack into the teachers' computers. In an effort to prevent this, I want to set up another domain for the students, but still allow them to access the intranet and Exchange mail system when their teachers are monitoring them. How can I accomplish this?

You're facing a problem common to educational institutions. I would strive to isolate student and administrative networks as much as possible. It's extremely difficult to secure environments where users have two different security levels (e.g. students and teachers) on the same network, regardless of their domain membership.

It's entirely possible to implement shared services, such as the mail and Web services you mentioned. I suggest using a four-interface firewall to create separate zones for students, teachers, shared services and the Internet. The Web server and intranet server would then live in the shared services zone or DMZ and benefit from the protection of the firewall's rulebase.

This was last published in August 2006

How to create shared services that two different parties can use

To mitigate a problem common to educational facilities, the student hacker, network security expert Mike Chapple suggests isolating student and administrative networks or creating shared services that both parties can use. Learn how to accomplish this task in this Ask the Expert Q&A.

Dig Deeper on Secure SaaS: Cloud application security

Boys outperform girls in 2017 computing A-levels

Female students less likely than male students to consider tech roles

Avoiding a security nightmare at South Australia’s Catholic schools

More than 70% of teachers still think students are better at using tech

Related Q&A from Mike Chapple

Wired vs. wireless network security: Best practices

The difference between AES and DES encryption

How to prevent DoS attacks in the enterprise

Start the conversation

0 comments

Please create a username to comment.

-ADS BY GOOGLE

SearchCloudSecurity

Top 6 cloud security analytics use cases

McAfee: Attacks on cloud accounts up 630% during COVID-19

Use these CCSK practice questions to prep for the exam

SearchNetworking

Cisco DNA Center's new features may mean more user headaches

Tips for setting up a home network

MLB uses NetBox automation for network configuration backup

SearchCIO

Involve your security team in the decision-making process

5 post cloud migration risks and how CIOs can avoid them

CIO strategies for COVID-19 require new long-term IT planning

SearchEnterpriseDesktop

New HP hardware directed at remote work

Ivanti updates its unified endpoint management

AMD's Ryzen, Epyc power surge in desktops, laptops, data centers

SearchCloudComputing

How to apply serverless in front-end cloud computing

AWS Marketplace update eases SaaS contract changes

AWS, Microsoft and Google should retire these cloud services

ComputerWeekly.com

Elisa enjoys 5G base station energy, emissions reductions from Nokia liquid cooling

Dutch organisations invest heavily in compliance – but in vain

Why this is the right time for IT