+ Post New Thread
Results 1 to 14 of 14
Windows Thread, Do you stop students from saving *.JS files in their H:\ drives ? in Technical; I'm just doing an audit on security. Students in ICT seem to be saving *.js files - could these pose ...
  1. #1
    kennysarmy's Avatar
    Join Date
    Oct 2005
    Location
    UK
    Posts
    1,254
    Thank Post
    75
    Thanked 45 Times in 31 Posts
    Rep Power
    30

    Do you stop students from saving *.JS files in their H:\ drives ?

    I'm just doing an audit on security.

    Students in ICT seem to be saving *.js files - could these pose a security risk?

    Cheers

  2. #2

    DaveP's Avatar
    Join Date
    Oct 2006
    Location
    Can't talk now: The mother-ship is calling!
    Posts
    8,318
    Thank Post
    331
    Thanked 1,192 Times in 814 Posts
    Blog Entries
    2
    Rep Power
    1065
    Yes we prevent students saving *.js and some other file types. We use FSRM [File Server Resource Manager] to enforce these settings.

  3. #3


    Join Date
    Feb 2007
    Location
    Northamptonshire
    Posts
    4,657
    Thank Post
    350
    Thanked 789 Times in 710 Posts
    Rep Power
    344
    FSRM is the king here and easy to set up.

  4. #4
    kennysarmy's Avatar
    Join Date
    Oct 2005
    Location
    UK
    Posts
    1,254
    Thank Post
    75
    Thanked 45 Times in 31 Posts
    Rep Power
    30
    But do *.js files actually pose a threat to network security?

    I need some proof before I annoy the IT teaching staff ....

  5. #5
    kennysarmy's Avatar
    Join Date
    Oct 2005
    Location
    UK
    Posts
    1,254
    Thank Post
    75
    Thanked 45 Times in 31 Posts
    Rep Power
    30
    Anyone?

  6. #6
    gmonks's Avatar
    Join Date
    Oct 2012
    Location
    Bedfordshire
    Posts
    200
    Thank Post
    111
    Thanked 23 Times in 17 Posts
    Rep Power
    10
    Quote Originally Posted by kennysarmy View Post
    But do *.js files actually pose a threat to network security?

    I need some proof before I annoy the IT teaching staff ....
    We've never had any problems with .js files, neither did we in the previous school I worked in.

  7. #7
    SovietRussia's Avatar
    Join Date
    Mar 2013
    Posts
    552
    Thank Post
    55
    Thanked 111 Times in 88 Posts
    Rep Power
    39
    I doubt you could take over the network with them.

  8. #8
    Norphy's Avatar
    Join Date
    Jan 2006
    Location
    Harpenden
    Posts
    1,984
    Thank Post
    45
    Thanked 218 Times in 165 Posts
    Blog Entries
    6
    Rep Power
    93
    Quote Originally Posted by kennysarmy View Post
    But do *.js files actually pose a threat to network security?

    I need some proof before I annoy the IT teaching staff ....
    I'd say no more or no less than a BAT, VBS, PS1, JAR or CMD file personally.

    What's actually in theses JS files? Have you examined them?

  9. #9


    Join Date
    Jan 2006
    Posts
    8,202
    Thank Post
    442
    Thanked 1,032 Times in 812 Posts
    Rep Power
    338
    Quote Originally Posted by SovietRussia View Post
    I doubt you could take over the network with them.
    I bet no-one could write a bruteforce script in javascript and point it at my SIMS server.
    Safe in the knowledge that what I don't know wont hurt me.

  10. #10

    Join Date
    Jan 2007
    Location
    Nottinghamshire
    Posts
    530
    Thank Post
    1
    Thanked 84 Times in 58 Posts
    Rep Power
    37
    Side a) if a program can break your network, your network is broken, why aren't you blocking multiple connection attempts, or using QoS to stop networks being overloaded
    Side b) who has time for that, someone's asked how to use the shift key again.

  11. #11
    kennysarmy's Avatar
    Join Date
    Oct 2005
    Location
    UK
    Posts
    1,254
    Thank Post
    75
    Thanked 45 Times in 31 Posts
    Rep Power
    30
    Quote Originally Posted by Norphy View Post
    I'd say no more or no less than a BAT, VBS, PS1, JAR or CMD file personally.

    What's actually in theses JS files? Have you examined them?
    Yes, mostly they look safe enough and are being used in IT lessons - website design by the looks.
    However, it's not the ones that look safe I'm worried about - it's the ones that some little kid brings in to school and saves on the network that CAN do harm....

  12. #12

    localzuk's Avatar
    Join Date
    Dec 2006
    Location
    Minehead
    Posts
    17,103
    Thank Post
    512
    Thanked 2,312 Times in 1,788 Posts
    Blog Entries
    24
    Rep Power
    803
    Quote Originally Posted by CyberNerd View Post
    I bet no-one could write a bruteforce script in javascript and point it at my SIMS server.
    Safe in the knowledge that what I don't know wont hurt me.
    Could do that in Excel with macros, or live in a browser via sites like jsfiddle.

    Kinda pointless blocking javascript files if you allow web browsers.

  13. #13
    Norphy's Avatar
    Join Date
    Jan 2006
    Location
    Harpenden
    Posts
    1,984
    Thank Post
    45
    Thanked 218 Times in 165 Posts
    Blog Entries
    6
    Rep Power
    93
    Quote Originally Posted by kennysarmy View Post
    Yes, mostly they look safe enough and are being used in IT lessons - website design by the looks.
    However, it's not the ones that look safe I'm worried about - it's the ones that some little kid brings in to school and saves on the network that CAN do harm....
    You're never going to solve that problem. If it's not a JS file, it's a SWF instead. Or an Excel Macro. Or an SWF called by an Excel Macro. Or a PDF file. There are a million and one file formats out there which may potentially cause harm, the only thing you can do is to mitigate that risk as much as possible. Perhaps a software restriction policy is in order here, only allow executable files to be run from approved locations. If the javascript files are being used for web development that shouldn't hurt.

  14. #14
    kennysarmy's Avatar
    Join Date
    Oct 2005
    Location
    UK
    Posts
    1,254
    Thank Post
    75
    Thanked 45 Times in 31 Posts
    Rep Power
    30
    Quote Originally Posted by Norphy View Post
    You're never going to solve that problem. If it's not a JS file, it's a SWF instead. Or an Excel Macro. Or an SWF called by an Excel Macro. Or a PDF file. There are a million and one file formats out there which may potentially cause harm, the only thing you can do is to mitigate that risk as much as possible. Perhaps a software restriction policy is in order here, only allow executable files to be run from approved locations. If the javascript files are being used for web development that shouldn't hurt.
    Yep, SRP is in place.
    Was just looking at if we should tighten further but think we are going to let *.JS files stay

SHARE:
+ Post New Thread

Similar Threads

  1. Replies: 5
    Last Post: 15th January 2013, 12:13 PM
  2. How do you stop synchronisation on an ex networked PC
    By speckytecky in forum How do you do....it?
    Replies: 5
    Last Post: 24th August 2008, 10:15 AM
  3. how do you stop kids from running exe from IE.
    By timbo343 in forum Windows
    Replies: 15
    Last Post: 8th January 2008, 02:14 PM
  4. What speed Internet do you get provided from your LEA
    By mattpant in forum Wireless Networks
    Replies: 60
    Last Post: 20th March 2007, 08:38 AM
  5. How do you stop kids saving tons of jpgs?
    By woody in forum How do you do....it?
    Replies: 8
    Last Post: 6th December 2006, 11:47 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •