<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"><head><meta http-equiv=Content-Type content="text/html; charset=us-ascii"><meta name=Generator content="Microsoft Word 14 (filtered medium)"><style><!--
/* Font Definitions */
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Tahoma;
panose-1:2 11 6 4 3 5 4 4 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0cm;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman","serif";}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal-reply;
font-family:"Calibri","sans-serif";
color:#1F497D;}
.MsoChpDefault
{mso-style-type:export-only;
font-family:"Calibri","sans-serif";}
@page WordSection1
{size:612.0pt 792.0pt;
margin:72.0pt 90.0pt 72.0pt 90.0pt;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]--></head><body lang=EN-US link=blue vlink=purple><div class=WordSection1><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal><b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>From:</span></b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'> linux-il-bounces@cs.huji.ac.il [mailto:linux-il-bounces@cs.huji.ac.il] <b>On Behalf Of </b>Oleg Goldshmidt<br><b>Sent:</b> Sunday, October 21, 2012 4:02 PM<br><b>To:</b> Steve G.<br><b>Cc:</b> IGLU Mailing list<br><b>Subject:</b> Re: where to host web server<o:p></o:p></span></p><p class=MsoNormal><o:p> </o:p></p><div><p class=MsoNormal style='margin-bottom:12.0pt'><o:p> </o:p></p><div><p class=MsoNormal>On Sun, Oct 21, 2012 at 3:13 PM, Steve G. <<a href="mailto:wordz2u@gmail.com" target="_blank">wordz2u@gmail.com</a>> wrote:<o:p></o:p></p><div><p class=MsoNormal><o:p> </o:p></p><div><p class=MsoNormal>Easiest example - a server with poor password. If you are in the intranet, and someone hacks into it and runs a DDOS on a local server, the admin will shut the offending server down and that's the end of it. Ditto for an error that creates infinite processing or broadcast loops. Do it to the outside world, and you'll have the authorities at your door. <o:p></o:p></p></div><div><p class=MsoNormal><o:p> </o:p></p></div><div><p class=MsoNormal>A second example - unauthorized content. Host kiddy porn on your internal account, and you'll be suspended (or your account closed till it is secured). Have an external hacker serving same from your university server, and you - and your institution and amin - will have to account to Interpol.<o:p></o:p></p></div><div><p class=MsoNormal><o:p> </o:p></p></div><div><p class=MsoNormal>You get my drift - some things are better left outside, where responsibility is the student's and the ISP's and not the Technion.<o:p></o:p></p></div></div><div><p class=MsoNormal style='margin-bottom:12.0pt'><br>No, sorry, I don't get your drift. We are talking about a course project or some such, i.e., a part of Technion's curriculum, where a student is supposed to create a web site, and - I presume - his/her creation is supposed to be tested and graded. <br><br>Either the site is on the Technion's internal net and not accessible from outside, or it is public and is open to the world to see. In the first case, an internal host seems easier. In the latter case, what's the URL? I *do* expect it to be <a href="http://something.technion.ac.il">something.technion.ac.il</a> (what else?). <br><br>In either case it is the Technion that will be responsible for the hosting (networking, DNS, etc.), not the student. The student will just use Technion's facility for his/her course work. In this case (creation of a web site) I suppose the student will not even have any administrative privileges. I absolutely do not see the Technion telling its students "please enter into a hosting contract with Amazon on your own if you want to pass this course". In any case, the hosting provider will deal with the Technion, and if "authorities knock at the door" the Technion will have to answer, and find the responsible student, and deal with it, etc.<br><br>If there is an illegal copy of Skyfall offered for download (or illegal porn, or DDOS zombie, or whatever) then I do expect the Technion to be liable equally regardless of the physical hosting facility. There may be a difference related to which country it is hosted on - I would expect Israel to be preferable for the Technion to anything else.<o:p></o:p></p></div></div><p class=MsoNormal>-- <br>Oleg Goldshmidt | <a href="mailto:pub@goldshmidt.org" target="_blank">pub@goldshmidt.org</a><o:p></o:p></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>OK I will try to clarify<o:p></o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>The students will have sudo account on the machine (every project will have its own machine)<o:p></o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>The students will decide which web server and supporting programs to install (but it will be Linux) and then install everything they need.<o:p></o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>We cannot test in advanced that the web site & the machine behave in a reasonable way.<o:p></o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>Everything can be accessed internally via a limited network.<o:p></o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>The problem starts for example if you want to test your system from a mobile device via 3G. Here you need to open your system to the world. Currently we can’t do it (for next year we will try to host a virtual cluster in the DMZ).<o:p></o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>Shahar<o:p></o:p></span></p></div></div></body></html>