Educause Security Discussion
mailing list archives
Re: VPN/ssh and foreign travel
From: Brad Judy <win-hied () BRADJUDY COM>
Date: Wed, 19 Nov 2008 12:33:01 -0500
There shouldn't be an export control issue if you're talking about employees
travelling to another country with encryption software installed on their
notebook. These travelers are presumably keeping the computer in their own
possession and bringing it back with them, in which case nothing was
Now, if they are travelling to a more heavily restricted country like North
Korea, you might have different issues.
Many campuses (including my former one) have been requiring encrypted
authentication to campus systems for years.
----- Original Message -----
From: "jeff murphy" <jcmurphy () BUFFALO EDU>
To: <SECURITY () LISTSERV EDUCAUSE EDU>
Sent: Wednesday, November 19, 2008 12:20 PM
Subject: [SECURITY] VPN/ssh and foreign travel
We're trying to eliminate use of cleartext password transmission for
access to university systems. One point of discussion involves dealing
with US export controls. What I'd like to hear from you (sec () educ) is
your thoughts on whether it's practical to require encrypted access given
the export issue?