Computer malware and spam impact productivity, increase support costs, and can result in the compromise or loss of data and reputation. Malware can originate from a range of sources, spread rapidly, and require a comprehensive approach to ensure the risk it poses is effectively managed. This comprehensive approach requires the full co-operation of all Hillsborough Community College Staff, Faculty, and Students.
This document is the College's Anti-Virus and Anti-spam Policy and outlines the overall approach adopted by the college as well as individual responsibilities.
Anti-virus – a software product that detects and removes malicious email attachments, content within email or other documents. It may be on a local PC, a server or both
Anti-spam – a software product that detects and deletes spam using an analytical process that determines the validity of an incoming or outgoing email by its content
Spam – Unsolicited e-mail, often of a commercial nature, sent indiscriminately to multiple mailing lists, individuals, or newsgroups; any junk e-mail.
Malware - Software that is written and distributed for malicious purposes, such as impairing or destroying computer systems, or sending personal data about the user to unauthorized parties over the Internet. Computer viruses or worms are considered to be malware.
This policy applies to all College staff, faculty, students or third parties using devices connected to or interacting with the College Network. Unauthorized use of college email and technology services in connection with the transmission of unsolicited e-mail and/or malware, including the transmission of e-mail and/or malware in violation of this policy, may result in civil, criminal, or administrative penalties against the sender and those assisting the sender.
Third parties are defined as any individual, group contractor, vendor or agent not registered as a College staff member, faculty member or student. Third party Access is defined as all local or remote access (including sending email) to the College Network or devices attached to the College Network for any purpose by any individual, group contractor, vendor or agent not registered as a College staff member, faculty member or student.
All Hillsborough Community College network users have a responsibility to protect any device they use to connect to the College network by ensuring that the correct anti-virus product is installed and that it is up to date. This relates to all College-owned hardware and authorized private hardware. All users are required to protect their systems from malware infection and follow the guidelines on spam email as outlined below.
Anti-Virus Protection for Users of College-Owned and authorized private Computers
Intentional or careless interference with or disruption of computer systems and networks and related services is not allowed. This includes but is not limited to the propagation of computer "worms," "viruses" and "Trojan Horses" and other activities that could have a negative impact on the HCC computing environment in the judgment of the Vice President of Information Technology or designee
Unapproved anti-virus products may not be installed on college-owned computers. Users may not attempt to alter the configuration or disable the existing anti-virus product.
When requested by The Office of Information Technology, users must install software designed to prevent or monitor malware infections. This software may not be disabled or uninstalled without permission from the VP of Information Technology or designee.
Users must logoff of their systems and leave their machines turned on when they leave for the day to ensure that their systems receive necessary malware and security updates.
Users should not open suspicious emails or attachments, solicited or unsolicited, from unknown or unusual sources.
Users should scan all software or other content that they download from the Internet for malware.
Users should exercise caution when downloading software from the Internet and install software from reputable Internet sites only. If users are unsure about the legitimacy of the software or source, they should contact OIT via the helpdesk.
Users should exercise caution when accessing web-based E-mail, including but not limited to Hotmail and Yahoo. Users should be aware that email accessed on these sites has not been scanned by the College email gateway and may contain malware
Responding to Virus Infections
All users must respond to any malware infection detection indicated by their anti-virus software by contacting the helpdesk in accordance with College procedures.
In the event that users are unable to clean or remove an infected file they should notify the Office of Information Technology Helpdesk of the problem immediately.
All users should be alert to the possibility of a virus and report any suspicious behavior on their computer to the Information Technology Helpdesk immediately.
Unsolicited Email (spam)
Users should exercise caution when divulging their College email account to third parties. Some organizations may provide email addresses to parties involved in sending unsolicited emails (spam), which may result in increased volumes of spam email being sent to a user’s account.
Using College network resources to distribute unsolicited email other than for College business is strictly prohibited. Users also may not deliver spam or cause spam to be delivered to any of Hillsborough Community College's email services or customers.
Users should never divulge personal information in response to a request received via spam.
Users may not use any college email services to send spam. In addition, e-mail sent, or caused to be sent, to or through the email services may not
The Office of Information Technology has a responsibility to protect College systems and infrastructure from malware and virus infection and to filter network traffic as appropriate.
Anti-virus and Anti-spam Measures
The Office of Information Technology will
The Office of Information Technology must
Gateway Malware Protection
The Office of Information Technology will provide and maintain effective virus scanning and anti-spam measures at the College gateway.
All inbound and outbound email from the College network and all autonomous managed networks must be routed through the central Message Transfer agent (MTA) in order to ensure that uniform gateway malware scanning and spam filtering measures are applied.
The Anti-Virus Support Group will be responsible for