Handling User Grown Machines on a Large Network? 611
matth asks: "Recently with the outbreak of the MSBLASTER worm and the startup of the college semester here in the US we've been hit by a big problem here where I work. Many students are bringing in machines from home, often times infected. The infections are so bad that they bring the whole network to a crawl. Yes, you can install ACLs on edge routers and put a router between the dorms and the rest of your network, but it still brings the dorm to a crawl. You can make sure people install the patches, but what if someone re-installs Windows, or brings in another machine, and what about NEXT year? From the Slashdot community, how have sysadmins out there dealt with this? How can you manage each machine in a network such as a college, where people are bringing their own machines in from the outside? ACLs on routers... but what about for the segmented network?"
Simple... (Score:5, Funny)
You could just... (Score:5, Funny)
YES, THAT'S A GOOD IDEA (Score:5, Funny)
"Here. You'll never use this first item if you choose to use the second item. Have fun, and welcome to college."
You are sooooo fired.
DHCP tricks (Score:5, Funny)
start with the freshman handbook (Score:5, Funny)
Post lists (Score:5, Funny)
Assuming you can identify the port from which the infected traffic is coming, post a list of all infected rooms on the front door of the dorms, with an explanation that "these computers are causing your network to suck."
The problem will be fixed.
Our Solution (Score:3, Funny)
Once the patch has been applied, we sit down with the user and assure them that they're not in trouble; everyone makes a mistake from time to time, and we have simple and effective means of dealing with the problem. Once they're calmed down and convinced that we're not upset with them, we wish them a good day and send them on their way.
When they turn their backs, we shoot them in the back of the head and put their bodies on display in the courtyard as an example to the rest of the imbiciles that might practice unsafe computing.
Re:The state of employment. (Score:4, Funny)
Somebody has obviously made a serious mistake then. Can I suggest you apply at the sign of the Golden Arches to find something more commensurate with your intellectual abilities?
Re:Ban 'em (Score:2, Funny)
Okay, so you give them the URL on the paper, right? Then what do they do? Call up the tech. support people and ask them to shout the patch down the 'phone? I can imagine it now: ``was that `one-one-oh', or `one-oh-oh'?''
Re:No more (Score:3, Funny)
I am seriously considering moving my smaller clients to Mac of Linux pretty soon
Hmm... sounds interesting, got a torrent ?
Re:Easy solution: (Score:1, Funny)
Thanks, but no thanks.
Re:You could just... (Score:3, Funny)
Along with their free condoms, give 'em free Linux CDs.
Dude... you gotta follow the rules. It's ( condoms XOR Linux ).
Re:responsibility (Score:5, Funny)
Re:I'm actually wanting to know the same thing, bu (Score:4, Funny)
running Mac OS X and I haven't had to lift a finger to do much of anything for more than a year
That's what I call a boring life. Compare this to the action packed life of a Windows(tm) Admin. I can imagine the next Microsoft tagline:
Windows: Bringing Unlimited Action to bored System Admins, since 1981.
Re:Domain logons (Score:3, Funny)
Re:Public humiliation (Score:3, Funny)
You could have a comparitive scale down the side, comparing the most inept to 'brick', ranging through 'hammer' and 'cabbage' with the cleverest compared to, say, '$10 digital watch'. You could have little iconic pictures on the scale to give it some colour.
Just my $0.02,
Michael
attn: geeks (Score:3, Funny)
Re:forcefully (Score:2, Funny)