[DM-MUG] Why can't Mac OS X be on our server?

Mon, 31 May 2004 11:37:47 -0500

--Apple-Mail-2-340085321
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain;
	charset=WINDOWS-1252;
	format=flowed

Joining this late, but as others have said, I think it's all political.=20=

You're asking the people who made a specious, but persuasive argument a=20=

few years ago that a PC mono-culture would be a cost-saving "good idea"=20=

and having macs peacefully sitting there on the network would burst=20
that bubble, and they will have less of a leg to stand on w/ other=20
teachers who are still mad about giving up macs in the first place.=20
Some of what they are shoveling may have been accurate before OSX, so=20
they may just be ignorant and operating under old info.

Anyway, re: dhcp, etc. they can also set up dhcp so it ONLY gives out=20
leases to known mac addresses (similar to what mediacom does) which=20
actually is a more secure set-up, since it maintains a central=20
authority, so a proxy server may not be your only "problem".

Not that it's likely to work, but you could propose that you could=20
"sandbox" your little corner of the network behind a NAT firewall, that=20=

they could configure to block everything but port(s) 80 (and 443) in=20
both directions. That way they're only giving up 1 IP on their network,=20=

you get what you need (and ONLY what you need). I don't think SW update=20=

needs anything but 80, but not sure. YOu could probably do this w/ a=20
little d-link or netgear router which hopefully they might feel warm=20
and fuzzy about.

I think the human element is the tricky part, since what got them to a=20=

PC mono-culture was a house of cards anyway, and proving that it's OK=20
to connect them would pull out one of the bottom cards. Unfortunately I=20=

don't see a whole lot of ways to inform them of the truth w/o them=20
losing face.

On May 31, 2004, at 8:44 AM, jim Lagnese wrote:
> Actually there is one scenario where it=92s not just enabling DHCP to=20=

> use the internet. They could be using a proxy server, one that does=20
> content filtering, and it could require authentication. Even if all=20
> you need is to have DHCP to connect, all they have to do is look at=20
> their DHCP leases and see who is connected. An increase of 14 would be=20=

> suspicious. On top of that, what if they limit the number of leases?=20=

> They may have to increase their pool to allow you to surf. Not a big=20=

> deal, but they would have to know.
>
--
Bryan Baker
President
Des Moines Macintosh Users Group
http://www.dmmug.org
president@dmmug.org

--Apple-Mail-2-340085321
Content-Transfer-Encoding: base64
Content-Type: application/pkcs7-signature;
	name=smime.p7s
Content-Disposition: attachment;
	filename=smime.p7s
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--Apple-Mail-2-340085321--