Section 4.6.2 TCP / IP Ports and the Management of HTTP & HTTPS Requests
To facilitate a secure environment for the delivery of
Web-based services to the Murdoch University Network and the Internet, all
registered Servers shall use port 80 for HTTP requests, or port 443 for HTTPS
requests.
Alternate Ports
Prior to the registration of a Server, an exception may be
approved where a valid case for using an alternate port is put forward to the
MurdochNet Coordinator.
Port 80, Virus Attacks, Denial of Service
The combination of:
(a) blocking ports 80 and 443 on all computers other than those used to run registered Web Servers
(b) the use of an Internet Accessible Subnet (IAS) for those Servers authorised to perform the role of an Internet Content Host
should reduce the University’s exposure to virus attacks,
potential security breaches and Denial of Service attacks.
Communications Services Responsibilities
The Manager, Communications Services shall be responsible for ensuring that:
(1) The use of ports 80 and 443 on all computers on the Murdoch University Network is blocked unless the computers are used to run registered Web Servers.
(2) A procedure is implemented for monitoring incoming HTTP and HTTPS requests at the protocol level to prevent unregistered Web Servers being run on computers using unapproved alternate ports.
(3) Any computer on the Murdoch University Network that is found to be running an unregistered Web Server is disconnected from the Network.
(4) Any Server that is found to be performing the role of an Internet Content Host without appropriate authorisation is disconnected from
the Network.
|
