Policy on intrusion

Incidents of computer intrusions and misuse that endanger the normal operation of networks and systems everywhere continue to be serious problems here at the UW. The most frequent incidents include:

Installation of "sniffer" programs to capture passwords
Use of UW computers for relaying "spam" email
Use of UW computers for "denial of service" attacks

Some ramifications of these activities include:

The ability for unknown people to read, change, and/or delete an individual's files and folders once the password has been acquired
Use of stolen accounts for illegal activities such as distributing or selling copyright-protected products
Embarrassment and/or legal problems when compromised UW computers are used to launch attacks against other networked computer sites or for illegal or anti-social purposes
Rejection of all UW email sent to sites that have blacklisted us as a result of a single UW computer being used to "spam" their users
Loss of access to computers at the UW and elsewhere for extended periods of time as a result of Denial of service" attacks

UW Technology's Role

To provide a reliable network computing infrastructure to the UW community, UW Technology must move quickly to deal with any computer or device on the network that is causing problems for others.

Accordingly, UW Technology will take whatever steps are necessary to remedy or prevent activities or conditions that, in UW Technology's judgment, endanger the orderly operation of UW networks or computers, or that threaten the UW's network connections to the Internet and/or other networked computer sites.

In the event of an attack from off-campus (or an attack coming from our campus causing great harm elsewhere), UW Technology will, if necessary, disconnect the campus wholly or partially from the rest of the Internet.

When a disruption is coming from a computer on the campus network, UW Technology will use the following procedures to end it:

Attempt to contact the administrator of the system(s) causing problems and work with him/her to assure timely and effective resolution of the difficulty.
If the attempt to contact fails (e.g., the system administrator cannot be reached), UW Technology unilaterally will take whatever measures are necessary to protect other systems and the network. (Example actions might include blocking access to UW Technology mail relay hosts or shutting down the Ethernet port to which the errant system is connected.)
In instances when a problem is deemed serious (e.g., there have been compromised passwords or disrupted communications), UW Technology will send an email summary of the problem and actions taken to the relevant Chair and/or Dean.
If illegal activities are discovered, appropriate authorities will be notified.

If you have questions or comments, contact UW Technology at help@u.washington.edu or 206-221-5000.