Dean's regulation no. 4/2008

On principles of the operation and use of computers connected to the MFF UK network

This is an informative translation, in case of obscurity, the meaning of the Czech formulation is decisive.

1. BASIC PROVISIONS

  1. The network of the Faculty of Mathematics and Physics of Charles University (hereinafter referred to as "MFF UK") is a set of technical facilities (i.e. cabling, network component units and central servers) allowing the MFF UK staff and students to access the Internet or other public computer networks. These guidelines define the fundamental rights and obligations of the operators of computer technology appliances connected to the MFF UK network, network administrators and their users.
  2. For the needs of these rules a user is a MFF UK employee, student, graduate student or another person approved of by the network administration, who is using computer technology at the MFF UK, being connected to an arbitrary public computer network (e.g. the Internet). A User is also every subscriber to any of the authentication network supported by MFF UK (e.g. Eduroam), logged on in compliance with the rules of the relevant network.
  3. Administration of networks on the individual sites (i.e. Karlov, Karlín, Malá Strana, Troja and the Residence Hall of November the 17th) has been assigned to employees or, as the case may be, to departments, based on a resolution of the Dean of MFF UK. Where necessary, the domain administration may issue the Rules of Operation as an amendment to these guidelines.
  4. It applies for every device connected to the MFF UK network that the operator (usually the department) determines the person responsible for the operation of such device the end user device administrator.

2. DOMAIN ADMINISTRATION

  1. The domain administrator ensures operation of the basic infrastructure of the MFF UK network in a given area (i.e. linking individual stations not the functionality of the stations as such) and its linkage to the Prague Academic Network (PASNET).
  2. The domain administrator approves of the connection of every new device to the MFF UK network, assigns it an IP address and domain name. It also approves of changes to configuration of communication tools of facilities linked to the network and operating network services servers. For authorized users this approval may be realised through technical means.
  3. Domain administrator is responsible for configuration of network component units and operation of central services for a given range, such as mail server, DNS, DHCP etc.
  4. In significant cases the domain administrator is entitled to disconnect the segment or the end user device causing problems (irrespective of owing to whom it has happened) for the time necessary so that network functionality be maintained. The network administration shall inform the relevant range of users about the causes and trouble-shooting procedure.
  5. MFF UK network users have no right to manipulate with the facilities (cables, network units) within the range of the domain administrator or to make any alterations to it through software means without previous consent from the domain administrator.
  6. Domain administrator is responsible for installation of cabling within its sector, however, it is not responsible for any construction works necessary for its installation.
  7. Domain contact address (application for end user device connection, error reporting, comments etc.) is netadm@domain.mff.cuni.cz.
  8. In each domain there is alias or newsgroup list netadm-l@domain.mff.cuni.cz for the end user device administrators, by means of which the domain administrator distributes its requirements, recommendations, network outages etc.
  9. Domain administrator may determine a schedule of regular network outages. He is obliged to inform the users in relevant area with such schedule.

3. END USER DEVICE ADMINISTRATION

  1. The end user device administrator applies for connection to the domain network administrator, stating in his/her application the type of connection, MAC address and the proposed name. S/he is also obligated to seek permission upon any change of end user device configuration pursuant to Section 2.b of these guidelines.
  2. The end user device administrator is responsible for the observance of Section 4 hereof by any possible user of the device he administers. Where necessary, s/he produces the Rules of Operation of the end user device as an amendment to these guidelines. In the course of his/her operational activities s/he shall abide by the provisions of Act No.101/2000 Coll., on the protection of personal data.
  3. The administrator is accountable for the consequences of whatever attempts at interference with the network operation or safety from the device s/he administers, and is therefore obligated to abide by the safety rules common for any device of similar type. If an offence is committed, the administrator has to provide any and all information and cooperation necessary for its investigation.
  4. The device administrator within the sphere of action of the domain administrator has, in the event of failure in network services, the right to contact the domain administrator, who shall take immediate troubleshooting action to remove the fault. Provided the failure occurred due to error configuration of the end user device, the device administrator should remove the fault himself.
  5. Other activities on the end user device fall wholly into the cognizance of its administrator (including configuration, backup, account creating etc.).
  6. When administering user accounts the common safety rules have to be observed, save for well-founded exceptions, only personal accounts may be created, and the accounts of users whose rights to use the MFF UK network became extinct have to be removed periodically.

4. REGULATIONS FOR USERS

  1. Every user has to be registered and his identity must be known (with the exception of access to public anonymous services such as FTP). The user is obligated to select a safe access password or other means of authentication and keep them confidential. If the user makes it possible to have his/her identity abused, s/he is liable for the damage incurred. If the user finds out that his/her or another account has been abused, he is to notify the device or the domain administrator without undue delay. When the user's employment with or studies at MFF UK are terminated his/her user rights become extinct.
  2. The computer technology, which is in the property of the faculty, and the MFF UK network, may solely be used for the activities approved by or associated with the faculty (teaching, projects, individual works etc.). It is prohibited to employ those means for any commercial, political, religious or nationalist purposes. The user must not distribute information that is contrary to law or which might discredit the reputation of the Charles University in Prague. This applies also to the contents of the website and direct links from these pages.
  3. For the use of electronic mail the same ethics shall apply as for the use of classic letter-mail. The sender must not pretend being someone else, or molest other users with his/her correspondence. An electronic letter needs to be regarded as an open consignment; hence the use of vulgarisms is strictly prohibited as well. Identical rules also apply for the completion of web pages and other such activities.
  4. Activities prohibited on computer connected to the MFF UK network hardware include: distribution, installation or the use of any such software and data for the distribution, installation or use of which the user is not authorized (where passive distribution is here also perceived as distribution i.e. placement on anonymous FTP or WWW server , for example). When on-line, the user is prohibited to run any software the operation of which is not approved of by the network administrator. Without permission it is also prohibited to copy and distribute any part of an operating system and/or installed software, which do not belong among shareware, or are public-domain.
  5. Attempts at gaining unauthorized access to programs, information, privileged statuses, peripheries and data of other users, or mediation or facilitation of such access, are prohibited. Should any such access or status occur inadvertently the user is obliged to notify the computer or network administrator, and in the event of his/her unavailability to terminate such status.
  6. The user must not deliberately overload the networks (e.g. by forwarding bulk or chain letters); when seeking information s/he is obliged to use the nearest source of the information required. S/he must not alter the configuration of network facilities or manipulate with devices that are not intended for public use. The user is obliged to abide by the rules for handling the specific technical equipment.
  7. The user is also obliged to observe the specific rules of the networks s/he is entering (both within the MFF UK as well as outside it) and the regulations (e.g. the Copyright Act and Export policies) of relevant countries.
  8. The networks˘ operation is monitored for the purpose of optimization of their functioning, detection and prevention of abnormal statuses and attempts of unauthorized access. The user agrees that his activity and data may be monitored; however, acquired data will be treated as confidential. Neither the network administrator nor the MFF UK bears legal liability for any incidental non-delivery, delay or other defects in data transmission.

5. FINAL PROVISIONS

  1. Any violation of these rules will be penalized under the law.
  2. This Directive amends the currently valid regulations with whole-university force and becomes effective as of June 1, 2008. At the same time the Dean's Directive No.4/1998 of March 6, 1998 is hereby repealed.


© 2013–2017 Charles University, Faculty of Mathematics and Physics. Design noBrother.
Content responsibility: Secretary Office.