www.cern.ch IT Department Homepage
CERN Home   IT Home   Sitemap   Phonebook   Need Help?
 
IT Home > Computer Security
 

All CERN
IT Division
Security Site
IT Services
spacer
Access to Facilities
Desktops and Portables
Administrative Computing
Physics Computing
Technical Computing
Telecom
Index of Services
Other Services
spacer
  Department Information
spacer
 
What We Do
Department Structure
Administration
Minutes & Reports
Safety in IT
Job Opportunities
spacer
  More on Computing
spacer
 
CERN School of Computing
Colloquia
Seminars
Newsletter
Bookshop
  spacer
   
  
 

Version Française

Restrictions on running Skype P2P software at CERN

Skype may be used provided that it is configured to comply with the restrictions which are described below.

A recipe for configuring Skype to comply with CERN restrictions may be found here.

The Skype P2P telephony software generates continuous background traffic once users have signed in to the application. This traffic is easily confused with malicious patterns and interferes with the initial detection as well as post-mortem analysis of security incidents. For this reason, its use and configuration at CERN is restricted as described below.

The following configuration is required:

  • software configured to use port 50123
  • supernode functionality disabled
  • no local firewall exceptions for Skype
  • Skype security patches kept updated

Further to help security analysis by minimising unnecessary traffic, users are recommended to:

  • sign out of Skype when not in front of the computer to receive calls during long periods (such as evenings).

If the use of Skype is considered to impede security or other operational functions you must immediately disable it on request.

 

 
Related Links
Computing Rules
Computer Security

Restrictions on Software for Personal and Professional Use
Feedback: Computer Security
Last update: Monday, 13. October 2008 08:39 		Computer Security
Copyright CERN