Host Database Trusted Parties

A Host Database Trusted Party (or a trustedparty for short) is someone who is authorized to change and delete practically any entry in the Host Database, and to edit the Departmental Contacts for any department.

This authorization is typically granted to those OIT fulltime staff members who, as part of their responsibilities, are often required to make such changes or deletions on behalf of customers throughout the University. If you are an OIT fulltime staff member and you believe you need trustedparty status, please ask your supervisor to contact hostmaster@princeton.edu .

This authorization is not granted to student employees, casual employees, persons who are not OIT fulltime staff, nor those are not responsible for acting on behalf of customers throughout the University.

When a change or deletion to a Host Database entry is submitted via the Web, we record the requester's netid (the netid that was used to login to the Host Database Web Service). Normally the requester's netid@Princeton.EDU must be equivalent to one of the Technical, Departmental, or Financial Contacts for the Host Database entry that is being changed or deleted. However, if the requester's netid is one known to be a trustedparty, the request will be processed without checking to see that it is equivalent to one of the entry's Technical, Departmental, or Financial Contacts.

When a department's Departmental Contacts are set via the Web, we record the requester's netid (the netid that was used to login to the Host Database Web Service). Normally the requester's netid must be one of the department's current Departmental Contacts, or be a Financial Contacts for any 3-digit account prefix associated with that department. However, if the requester's netid is one known to be a trustedparty, the request will be processed without these checks.

For information about Technical Contacts in general, see Host Database Field: Technical Contact; for information about how Technical Contacts are normally checked, see Technical Contacts and the Web Interface to the Host Database. For information about Financial Contacts, see Financial Contacts and the Host Database. For information about Departmental Contacts, see Departmental Contacts and the Host Database.

The remainder of this document is intended for Host Database Trusted Parties.

Be Very Careful

The trustedparty privilege allows you to change or delete any entry in the Host Database, and to set the Departmental Contacts for any department. Be careful with this privilege:

• Before changing or deleting a Host Database entry belonging to someone else, be sure that someone who owns the entry understands what you are going to do, and agrees that it is an appropriate change or deletion. That is, be sure to check with someone who is listed as one of the entry's current Technical Contacts, Financial Contacts, or Departmental Contacts. (You need only obtain consent from any one of these individuals, not all of them.)

  For example, if you receive email from someone requesting a change or deletion, examine the email to determine if you can trust that the apparent sender is indeed who s/he claims to be. If the mail headers prove that the mail was sent via OIT's Webmail service, OIT's authenticated SMTP service, or from an OIT UNIX system, then it's generally reasonable to trust that the request did indeed come from the OIT netid claimed in the mail header. If the email was sent from some other University departmental system, a private computer, or from elsewhere on the Internet, you should not trust the mail headers.

  Similarly, if you receive a phone call from someone requesting you make such a change or deletion, you need to verify that the caller is indeed who s/he says s/he is. Often this is not practical over the phone.

  If the person placing the request claims to be one of the entry's current Technical, Departmental, or Financial Contacts, one way to verify the person's identify is to ask the person to send email to you confirming the request, in such a way that you can trust the mail headers. (In most cases, this simply means they need to send the email using OIT Webmail, OIT authenticated SMTP, or from an OIT UNIX systems.)

• The unavailability of a single Technical, Financial, or Departmental Contact is not sufficient justification for changing or deleting a Host Database without the consent of one of the remaining Technical, Financial, or Departmental Contacts.

  For example, imagine an entry has two Technical Contacts (Trudy and Tom), one Departmental Contact (Anne), and one Financial Contact (Frank). Joe Random asks you to change the entry; Joe says that Tom is no longer at the University so Tom cannot change the entry anymore. You (or Joe Random) should try to contact Tom, Anne, Trudy, and/or Frank to seek permission from one of them before proceeding. (If you know for a fact that Tom has indeed left the University, you could skip him.) Only when we believe that all Technical, Departmental, and Financial Contacts are no longer available do we consider the entry "orphaned" and allow someone else to claim it.

  It is insufficient to obtain consent from the entry's "User Contact" (a.k.a. "User Email"). That person does not own the Host Database entry.

• Don't change or delete any Host Database entry that appears to represent part of the network infrastructure. For example, entries that belong to hostmaster@princeton.edu , networking@princeton.edu , or netman@princeton.edu are there for a purpose.

• After submitting the change, log off from the Host Database Web site by quitting your Web browser. Until you do so, anyone else using your Web browser could submit changes in your name, taking advantage of your trustedparty privilege.

Changing/Deleting Entries except Dormnet Subscriptions

Nearly all the information that is referenced from the Host Database home page describing how one makes changes to Host Database entries is still relevant, even when you are acting as a trustedparty. The only difference is that the test to see if you are one of the entry's current Technical, Departmental or Financial Contacts is skipped.

In particular, be aware where the email will be sent when the request is processed:

• As with all requests, only the submitter (a trustedparty in this case) will receive the email that indicates that the request has been processed. (This email does not indicate the outcome of the processing.)

• Just as with all requests, if there is an error in the request, only the submitter will receive email explaining why the request could not be processed. (So be sure to read email sent to your_netid@Princeton.EDU, so you will see such error mail.)

• Just as with all requests, if the request successfully changes or deletes a Host Database entry, email indicating the result will be emailed to all the Technical Contacts in the (resulting) entry, any Departmental Contacts associated with the (old and new) entry's Department-Name (if they choose to receive copies of such email), and possibly the Financial Contacts. This means that if the submitter is not one of these peoeple, s/he will not receive that email. If that would prevent you from receiving a copy of that email, and you want to receive it, then list your email address in the NOTIFY field on the Change Entry form; note that this notification service is available only when you change (or add) an entry to the Host Database, not when you delete an entry.

• Just as with all requests, if the request successfully sets the Departmental Contacts for a department, email indicating the result will be emailed to all the Departmental Contacts (including any present in the list both before and after the change) along with any Financial Contacts for any 3-digit account number prefixes associated with the Department Name. This means that if the submitter is not one of these peoeple, s/he will not receive that email.

Subscribing/Changing Dormnet Subscriptions

You will be prompted to enter the netid of the student for whom you are acting. The rest of the forms you will see are slightly different than the forms that a student would see; the Web interface knows you are acting as a trustedparty on behalf of a particular student.

If you are issuing a "Subscribe to Dormnet" command, you are responsible for verifying that the student agrees to all that this implies. (I.e. the student agrees to pay for the Dormnet subscription, and will abide by the published regulations for use of Dormnet and the use of the campus network.) When a student issues a "Subscribe to Dormnet" command herself, she is presented with a document she must read and agree to before proceeding, laying out these requirements. When you act as a trustedparty, you will not be presented with that document, and more importantly, the student will not be presented with that document. So it is your responsibility to make sure that the student is aware of and agrees to the items listed in that document.

If you are issuing a "Subscribe to Dormnet" or "Change Dormnet Entry" command, you are responsible for verifying that the student is aware of and agrees to the statements that appear on the form you complete on behalf of the student. Of special concern is the material in the "Affirmation" section on the page where you enter Ethernet hardware address, Wireless hardware address, etc. You are responsible for verifying that the student is aware of, and affirms that the information on the form is accurate.

The information about making changes to these entries that appears on the Host Database home page still applies. In particular, be aware where the email will be sent when the request is processed:

• As with all requests, only the submitter (a trustedparty in this case) will receive the email that indicates that the request has been processed. (This email does not indicate the outcome of the processing.)

• And just as with all requests, if the request is succesful, only the Technical Contact(s) in the Host Database entry will receive email indicating the result of processing the request. Database trustedparty who submitted the request will not receive this email.

Please be sure the student knows that you will be subscribing her to Dormnet, or changing her Dormnet entry, and that she will receive email (at the address listed as the Technical Contact) indicating the succesful outcome of the change/deletion. That will help prevent confusion when she receives that email.