@PEL.NET WEB
Welcome to the PEL.NET empire!
These pages are intended to provide information in regard to the new VPN Access Model for the main storage
section of the http://datacenter.pelnet.eu/ website.
|
Click Here to request login credentials, certificates and keys.
Click Here for the OpenVPN connection guide (DOC) or here for the PDF version.
Click Here for the general OpenVPN F.A.Q.
Click Here to download VPN Client Packages.
Click Here to visit the official OpenVPN page.
General Information
@Pel.Net, 12/23/2010
-------------------------------------------------------------------
Proposal for increased security concerning copyrighted material
on the @Pel.Net public systems.
-------------------------------------------------------------------
1. Preface
This draft proposal represents the changes planned for the publically
accessable systems and services offered by @Pel.Net, both on local and
hosted servers. Due to recent changes in Internet legislation, the
introduction of "Europol", the cooperation between the Netherlands and
the United States of America, together with various other "Echelon"
countries and the increased effort in traffic monitoring, @Pel.Net has
made the decision to remove all access to any potentially copyrighted
material or other data which may infringe on the rights of the
intellectual owners.
2. Time frame
According to the current scheme, all such services and downloads will be
made unavailable as of 01/01/2011. Certain exceptions may be made, where
a service or other offending function will remain accessable for a period
of no longer than 6 months (180 days).
3. Affected services
Host: http://datacenter.pelnet.eu
usage: e.g. http://datacenter.pelnet.eu/$vfolder
netmp3 - audiofiles
netvideo - videos
install - applications and OS's
drivers - drivers
SOAPSearch - search application (XML)
search - search application
sun - solaris 10 iso files
torrentmgmt - torrent management ui (inactive and deprecated)
Host: http://pelnet.no-ip.org/?cat=none
usage: e.g. http://pelnet.no-ip.org/?cat=$category
release - releases of @Pel.Net OS's and boot media
ut - UT stats from the last period
4. Changes in the security/ACL model
Due to the ever increasing number of registered @Pel.Net users and our ongoing
commitment towards them, an alternative security/access model is being designed,
though not all aspects have yet been finalized. The following scheme lists the
definite changes and the probable changes which are still in planning.
Changes (to be implemented as of 01/01/2011):
- The above mentioned services will no longer be accessable from the
Internet, regardless of login credentials supplied (netmp3, search,
netvideo, install, drivers, sun, SOAPSearch).
- Users will be required to provide their full contact details upon
requesting an account, and are obliged to communicate any updates of these
details to @Pel.Net should they change. This entails a telephone number,
email address, postal code and full address details. @Pel.Net reserves the
right to request additional information based on the intended usage of the
account.
- Any violation of the usage policies (such as providing unregistered
indivduals or entities with @Pel.Net login credentials other than generic
access logins, storing @Pel.Net login credentials on public machines or
attempting to gain access to areas for which no clearance has been provided,
etc) will result in the deactivation of the account involved, and the
administrator will review the circumstances to determine if the account
shall be purged entirely from the systems.
- No links affiliated with illegal file sharing may be posted in systems or
services where they are visible to other users, except the administrator.
This includes for example posting a link to a Bittorrent search engine, a
.torrent file or any other form of _potential_ copyright violation. Any links
matching these criteria that are found in the forum (/support) or any feedback
system will be deleted as soon as possible and the user may be subjected to a
ban for a period of time to be determined by the administrator.
- No link pointing to specific non-web-content files on the @Pel.Net servers,
local or hosted, shall be published on non-@Pel.Net services. The definition of
a 'non-web-content file' is a file devoid of an extension or with an extension
not listed in the overview below:
- Markup files
- .htm(l)
- .chm
- .asp(x)
- .php
- .cgi
- .pl
- .stm
- .jsp
- Image files
- .(m)jp(e)g
- .gif
- .bmp
- .png
- .tiff
The only exception to this being a direct link pointing to a file directly
related to an 'open source' project, (partially) developed by @Pel.Net or
affiliated parties, such as 'OpenSearch', 'BibiCal' or any UMP related data.
Changes (to be reviewed before 01/01/2011):
- The aforementioned affected services will remain available to registered users
by means of Virtual Private Networking, further referred to as VPN in this text.
- Potentially, IP based exceptions may be implemented for direct HTTP(S) access
for users who use a (semi-) static IP address. This however requires an increased
level of supervision and administration overhead for the services involved and
may thus only be implemented as a temporary measure. This solution has a low
probability of being put into practice.
- User certificate verification. Access to restricted areas could be granted by
means of secure private certificates, though a compromise of the client system
could implicate a reduction of security at the server end which is obviously
undesireable.
5. Conclusion
Although these changes may appear radical at first and even draconian to long term
users of @Pel.Net, we firmly believe that these measures will provide a higher level
of security both for @Pel.Net and its users. The scheme that is currently receiving the
most attention is the VPN Access Model, further referred to as VAM in this document.
VAM not only addresses the issue of stored credentials on client machines, enforces
password and certificate authentication based on a secure PKI (Private Key
Infrastructure) but also ensures a completely indecipherable file transfer. Obviously,
the requirement of installing an SSL VPN client on each computer that wishes to access
the affected services is a substantial complication, though the number of clients that
do not support this type of functionailty are extremely low. Note that NTLM over HTTP
authentication will remain in place, so browsers/platforms that do not support this
method will still not be supported.
In an attempt to simplify the usage and acqisition of the OpenVPN software, @Pel.Net
will extend the information in the /vpn application to provide binary and source
distributions of the client software and OS-specific information for the installation.
6. Additional information
The following URLs may provide additional information and documentation regarding the
VPN Access Model and related topics.
VPN/VAM information and documentation
http://datacenter.pelnet.eu/vpn
Discussion of related matters
http://datacenter.pelnet.eu/support
-- Admin
@Pel.Net Enterprises
================================================================================
Our company accepts no liability for the content of this email, or for the consequences of
any actions taken on the basis of the information provided, unless that information is
subsequently confirmed in writing. Any views or opinions presented in this email are solely
those of the author and do not necessarily represent those of the company. WARNING: Computer
viruses can be transmitted via email. The recipient should check this email and any
attachments for the presence of viruses. The company accepts no liability for any damage
caused by any virus transmitted by this email.
1994 - 2009 @Pel.Net, Zuid, Enschede, Netherlands, http://pelnet.eu/
================================================================================
-------------------------------------------------------------------
Proposal for increased security concerning copyrighted material
on the @Pel.Net public systems.
-------------------------------------------------------------------
1. Preface
This draft proposal represents the changes planned for the publically
accessable systems and services offered by @Pel.Net, both on local and
hosted servers. Due to recent changes in Internet legislation, the
introduction of "Europol", the cooperation between the Netherlands and
the United States of America, together with various other "Echelon"
countries and the increased effort in traffic monitoring, @Pel.Net has
made the decision to remove all access to any potentially copyrighted
material or other data which may infringe on the rights of the
intellectual owners.
2. Time frame
According to the current scheme, all such services and downloads will be
made unavailable as of 01/01/2011. Certain exceptions may be made, where
a service or other offending function will remain accessable for a period
of no longer than 6 months (180 days).
3. Affected services
Host: http://datacenter.pelnet.eu
usage: e.g. http://datacenter.pelnet.eu/$vfolder
netmp3 - audiofiles
netvideo - videos
install - applications and OS's
drivers - drivers
SOAPSearch - search application (XML)
search - search application
sun - solaris 10 iso files
torrentmgmt - torrent management ui (inactive and deprecated)
Host: http://pelnet.no-ip.org/?cat=none
usage: e.g. http://pelnet.no-ip.org/?cat=$category
release - releases of @Pel.Net OS's and boot media
ut - UT stats from the last period
4. Changes in the security/ACL model
Due to the ever increasing number of registered @Pel.Net users and our ongoing
commitment towards them, an alternative security/access model is being designed,
though not all aspects have yet been finalized. The following scheme lists the
definite changes and the probable changes which are still in planning.
Changes (to be implemented as of 01/01/2011):
- The above mentioned services will no longer be accessable from the
Internet, regardless of login credentials supplied (netmp3, search,
netvideo, install, drivers, sun, SOAPSearch).
- Users will be required to provide their full contact details upon
requesting an account, and are obliged to communicate any updates of these
details to @Pel.Net should they change. This entails a telephone number,
email address, postal code and full address details. @Pel.Net reserves the
right to request additional information based on the intended usage of the
account.
- Any violation of the usage policies (such as providing unregistered
indivduals or entities with @Pel.Net login credentials other than generic
access logins, storing @Pel.Net login credentials on public machines or
attempting to gain access to areas for which no clearance has been provided,
etc) will result in the deactivation of the account involved, and the
administrator will review the circumstances to determine if the account
shall be purged entirely from the systems.
- No links affiliated with illegal file sharing may be posted in systems or
services where they are visible to other users, except the administrator.
This includes for example posting a link to a Bittorrent search engine, a
.torrent file or any other form of _potential_ copyright violation. Any links
matching these criteria that are found in the forum (/support) or any feedback
system will be deleted as soon as possible and the user may be subjected to a
ban for a period of time to be determined by the administrator.
- No link pointing to specific non-web-content files on the @Pel.Net servers,
local or hosted, shall be published on non-@Pel.Net services. The definition of
a 'non-web-content file' is a file devoid of an extension or with an extension
not listed in the overview below:
- Markup files
- .htm(l)
- .chm
- .asp(x)
- .php
- .cgi
- .pl
- .stm
- .jsp
- Image files
- .(m)jp(e)g
- .gif
- .bmp
- .png
- .tiff
The only exception to this being a direct link pointing to a file directly
related to an 'open source' project, (partially) developed by @Pel.Net or
affiliated parties, such as 'OpenSearch', 'BibiCal' or any UMP related data.
Changes (to be reviewed before 01/01/2011):
- The aforementioned affected services will remain available to registered users
by means of Virtual Private Networking, further referred to as VPN in this text.
- Potentially, IP based exceptions may be implemented for direct HTTP(S) access
for users who use a (semi-) static IP address. This however requires an increased
level of supervision and administration overhead for the services involved and
may thus only be implemented as a temporary measure. This solution has a low
probability of being put into practice.
- User certificate verification. Access to restricted areas could be granted by
means of secure private certificates, though a compromise of the client system
could implicate a reduction of security at the server end which is obviously
undesireable.
5. Conclusion
Although these changes may appear radical at first and even draconian to long term
users of @Pel.Net, we firmly believe that these measures will provide a higher level
of security both for @Pel.Net and its users. The scheme that is currently receiving the
most attention is the VPN Access Model, further referred to as VAM in this document.
VAM not only addresses the issue of stored credentials on client machines, enforces
password and certificate authentication based on a secure PKI (Private Key
Infrastructure) but also ensures a completely indecipherable file transfer. Obviously,
the requirement of installing an SSL VPN client on each computer that wishes to access
the affected services is a substantial complication, though the number of clients that
do not support this type of functionailty are extremely low. Note that NTLM over HTTP
authentication will remain in place, so browsers/platforms that do not support this
method will still not be supported.
In an attempt to simplify the usage and acqisition of the OpenVPN software, @Pel.Net
will extend the information in the /vpn application to provide binary and source
distributions of the client software and OS-specific information for the installation.
6. Additional information
The following URLs may provide additional information and documentation regarding the
VPN Access Model and related topics.
VPN/VAM information and documentation
http://datacenter.pelnet.eu/vpn
Discussion of related matters
http://datacenter.pelnet.eu/support
-- Admin
@Pel.Net Enterprises
================================================================================
Our company accepts no liability for the content of this email, or for the consequences of
any actions taken on the basis of the information provided, unless that information is
subsequently confirmed in writing. Any views or opinions presented in this email are solely
those of the author and do not necessarily represent those of the company. WARNING: Computer
viruses can be transmitted via email. The recipient should check this email and any
attachments for the presence of viruses. The company accepts no liability for any damage
caused by any virus transmitted by this email.
1994 - 2009 @Pel.Net, Zuid, Enschede, Netherlands, http://pelnet.eu/
================================================================================
