[teknoids] RE: Q's re Dropbox/DropSmack

Ahlbrand, Ashley Ames aaahlbra at indiana.edu
Wed Apr 17 11:13:45 EDT 2013

As I am not actually a member of IT, I cannot give much info, but I know that at IU we have the same policy toward Dropbox.  However, IU contracted with Box.com for a special license of their product, because it does meet our security standards.  Here's an article<http://kb.iu.edu/data/bbox.html> about IU's Box service.

Ashley Ahlbrand
Educational Technology Librarian
Indiana University Maurer School of Law

From: teknoids-bounces at ruckus.law.cornell.edu [mailto:teknoids-bounces at ruckus.law.cornell.edu] On Behalf Of Kerns, Resa J.
Sent: Wednesday, April 17, 2013 10:09 AM
To: Teknoids
Subject: [teknoids] Q's re Dropbox/DropSmack

Good morning tech-savvy friends~

We've just gotten word from our IT Pro that we are no longer allowed to use Dropbox on university machines, due to the vulnerability described here:  http://www.techrepublic.com/blog/security/dropsmack-using-dropbox-to-steal-files-and-deliver-malware/9332

A couple of questions for those of you in the know~

(1)   Can you avoid the vulnerability by using Dropbox from its website, rather than synchronizing with the desktop application?

(2)   Are some of you using similar products or processes that don't seem to raise the same concerns (for convenient file storage and transfer)

Thanks in advance for any thoughts or insight. This is an area I'm not very familiar with.


Resa Kerns
Associate Law Librarian for Emerging Technologies
School of Law Library
kernsr at missouri.edu<mailto:kernsr at missouri.edu>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://ruckus.law.cornell.edu/pipermail/teknoids/attachments/20130417/980c71cc/attachment.html

More information about the Teknoids mailing list