Thanks Matthew,
That makes it a bit simpler, what do you do about
users coming in via VPN,
or am I thinking about this too much and should trust my users?
Cheers,
Duncan
Matthew Slowe wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Duncan B. Brannen wrote:
>
>> Hi All,
>> We're subscribing to the above database which is looking for
>> the eduPersonEntitlement BUFVC_BOB_NATIONAL
>> for staff and students who are in the territory of the United Kingdom.
>>
>> Is anyone else subscribing to this and how are they filling that
>> condition? On campus only, no VPN or mark the students
>> with term addresses != UK and hope no one goes on sabbatical that might
>> use it?
>>
>> The relevant license clause is below,
>>
>> *You may only access or use BoB in the _territory of the United
>> Kingdom_.* If you are in another country, the licence and
>> associated exceptions in law do not apply and you cannot use BoB,
>> even if you are an authorised user in the UK.
>>
>
> Duncan,
>
> We spent quite a bit of time pondering how to do this and ended up
> asking BoB about it.
>
> The view we got from them (which I hope they'll corroborate!) was:
>
> 1) the institution should take measures to only allow authorised users
> to authenticate and have the BUFVC_BOB_NATIONAL flag;
>
> 2) BoB have measures in place to restrict access based on geography (I
> think they mentioned GeoIP).
>
>
> - --
> Matthew Slowe <[log in to unmask]> | Tel: +44 (0)1227 824265
> Development Team, Information Services | Fax: +44 (0)1227 824078
> University of Kent, Canterbury, Kent | Web: http://www.kent.ac.uk/
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.9 (GNU/Linux)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
>
> iEYEARECAAYFAkt7rUwACgkQ/V1qDCaTXgd6DACeInOboXHJAquXEikCrNFfpI7K
> MCwAn3GACPTs5LEYgtrrz5YPR3RImbQ0
> =I63H
> -----END PGP SIGNATURE-----
>
|