Grumbledook Blogs

In a recent article by Miles Berry, over on Merlin John’s site Agent4Change, Miles raises a number of really good points about saving money in this year of austerity … but there are a few points that still get me about Open Source and an almost blind faith that it can solve nearly all our problems (actually … it can solve a significant amount and Miles is realistic enough to point out limitations, possible other costs, etc but that is another post for another time).

My issue is with point 5 of the article which I have copied below

5. Take control of your Internet connection. Compare the cost of your LA/RBC provided service and that of commercial providers, and check you really do need any additional benefits that you may be paying for. How often do you need access to the NEN? This seems to be what’s hinted at in the DfE’s description of the second Harnessing Technology grant cut, as giving schools time to plan to “reconfigure their broadband”. I think it interesting that hardly any independent schools opt in to RBC services. Use Squid as a proxyserver to speed up multiple access to the same pages. Explore some of the filtering options for Squid, such as the kind-of-open-source DansGuardian, which is based on Squid. Think carefully about your filtering policy, bearing in mind that children have a right to “seek, receive and impart information and ideas of all kinds, regardless of frontiers, either orally, in writing or in print, in the form of art, or through any other media of the child’s choice.”

Yes … the recent cuts are an attack on things like RBCs and the capital investment that goes into these projects and how they are now into the ‘revenue’ phase (your running costs should always be cheaper that the capital projects which will include the setup costs and running costs during that project period), but have you noticed how there is no noted revenue grant (either a new one or increase in others)? Strange that … Anyway, back to Miles’ point.

I’ll let RBCs talk about the other services they provide such as DNS, website hosting, email filtering and email hosting, video conferencing, firewalls and security … they already have a lot of collateral on that and they will have their own job cut out to get people to realise the the things which are taken for granted.

Instead I will focus on why I have a lot of respect for those schools who run their own filters, have their own firewalls and spend considerable time and effort on doing things as efficiently as possible. And I will also mention those that try and miss to hit the objectives (often through no fault of their own).

Dansguardian is a fantastic piece of software from a bloke called Dan. It is the open source end of an even better solution from a company called Smoothwall. It works on the basis of filtering on phrases, regular expressions in URLs, it can whitelist and is pretty configurable. It is compatible with squidGuard blacklists … and this is where my problem starts. Filter lists generated by the community come from *all* of the community … and what your needs are, they are likely to differ to others. Whilst the lists are really good for protection against porn (amazing how eager people are to search for porn … and then block it of course!) they can be lacking in other areas such as hate speak, weapons, drugs, violence, crime, malicious scripts … and then you get things randomly (apparently) blacklisted because someone doesn’t like it. Those of use who have run their own mail servers know what a pain it can be have to deal with RBL lists where your mail server is regarded as a spam machine … even though it isn’t and it is because someone has made a complaint! The same applies here … you run the risk of sites you know and love suddenly becoming blocked … on a regular basis. You get what you pay for when it comes to filtering lists … and that is why there are commercial add-ons to ISA and why DansGuardian is not as effective as Smoothwall’s Network Guardian / Schools Guardian.

Many schools who make use of DansGuardian are fine with this and have staff who can manage it and can whitelist the required sites … and this is my next sticking point. If you get a lot of problems with sites then the de facto method of dealing with it is to lock down and release it slowly. This means blocking everything and whitelisting sites. Yes … a step back for some schools to consider whitelisting resources instead of managing them effectively.

Now this is also an issue I have with people running Microsoft ISA in schools … who rely on a few key phrases and hope it works. They might turn off as many categories from the RBC filters as they can and say they are dealing with it all in house. The thing I would then ask is what are the criteria do they have for adding sites to a whitelist or blacklist? Who verifies that the changes to the phrases which are filtered are correct? I’ve already posted about how it is not the technology but the people and how it is managed. If the schools are going to move to something that definitely requires more management then they had better make sure they know what they are getting into.

And then we get to who will manage it … is it an admin task which teachers will not do? Is it something for pastoral staff to update? Is it soley done by tech support? You do have tech support available every day don’t you? The interface for Dansguardian is not exactly user friendly IMHO … I’ve seen worse (don’t get me started on vle editing interfaces!) and when it comes to reports you are talking about really knowing what you are doing … because make no mistake, out of the box systems take time and considerable effort to get right and be suitable to get infomration when you want it.

I can hear the Ubuntu hordes massing at my door telling me it is easy … yes, if you have picked up the skills and I won’t even start on the fun you can get into trying to compile things in *nix (and yes … for some of us it is fun, but not for everyone). I am not saying that ISA (or other products) are any better for this … a school I know recently had performance problems with their internet connection after moving to use an ISA box in-house … and it was also using a filter in front of that … so all web traffic went through the filter and then to the ISA … which had the default maximum of 600 connections per minute set. Yes, that means that only 10 connections a second from a computer could be made to the internet … all because of default settings being missed.

Open Source Software may be free … as in no licence costs and open to be developed by yourself and others … but the other costs of management, hardware, training and risk play a large part here. Out of the schools I have worked with who are not on RBC connections most use commercial products to protect themselves and the choice not to be with the RBC is mainly political, not cost. They also accept that they have to deliver *all* their own services including email, email filtering, etc … and this also involves spending significant money on a decent firewall to protect their network … and this is before we get into the fact that a ‘cheap’ commercial connection might not get you the quality of connection you get from an RBC. Very important if you live outside of a large urban area.

So yes, consider that you can make use of Open Source Software to supplement what you are doing on your connection … I love the textual filtering on some filtering products to allow you to score and filter keywords … but accept that this is small scale tweaking to target a particular issue (like the growth of new slang for insults) and the integration ISA has into the Active Directory making it more flexible when restricting a particular group of users … but also consider the time and effort to do all of this, the other things you will use … and no matter how much someone tells you OSS is free, there will be some costs.

And whilst we are talking about sharing and communities … I’ll hold my hands up to when I was a vocal person working in a school arguing that the idea of smoothing costs for RBC connections across schools was unfair to us as an individual school. Now that I am at an LA I can honestly see how selfish that was. Surely if we are a community and trying to share and look after one another then it is unfair to pull out of a scheme designed to give equity of access and not penalise the rural schools? I know people will say that the answer should be solved by the market, but since the Govt thinks we don’t need to invest anymore in the infrastructure then they must also accept that some areas are more costly that others for connections. Are we not just supporting the break up of this (NEN) community? Oh … it is because schools should have control and not LAs? Ah … that is a different discussion to have then and not about saving money, but power, control and politics.

Ladies and Gents, the cynic has left the building.

This week will see a few blog posts go up.

First will be one already writte, exploring a bit more about sharepoint and web 2.0, next will be talking about why we filter emails and what impact the management of it can have, then finally I will be asking around about how different people feel about the different between hosted and local solutions for sharepoint.

It should be a busy week of meetings as well (when is it not) but I hope to squeeze all three items in.

A recent tweet (or rather a retweet) had the following URL (in which we see ten commandments from a technically savvy teacher to technicians) – http://bit.ly/dpdjFO – and whilst I can understand the intention I just find it opens up the can of worms that is techie/teacher bashing. On places like the TES forums you get techie bashing (interspersed with some common sense) and on EduGeek.net you get the occasionaly rant about clueless teachers (followed by lots of agreement and the odd balanced example of clueful teachers). It frustrates me. It annoys me the two groups of people who could do much when they work together suddenly express a lack of understanding about the other is doing … And then you get some wonderful examples of it all working together.

As a result I am reposting the 10 Commandments, followed by the techie equivalent. I will then stick in my own version … and I make no apology for any trolling that appears to be taking place. As I was poked to respond, I am poking others to rise too!

The ten commandments of school tech support

• [Original]Thou shalt test the fix.
  [Techie]Thou shalt accept that we can only fix things we get told about. Reading minds might get us burnt at the stake.
  [Me]Communication and the processes by which tech support work should be effectively communicated, but all should accept that it is a two way thing.

• [Original]Thou shalt talk to actual students and teachers and make time to watch how technology works during actual class time, not just when it’s quiet.
  [Techie]Thou shalt listen to technicians when they ask questions, give truthful answers about what you expect technology to do and accept that there are limitations.
  [Me]No technology is perfect and some compromise is needed. It means a bit of give and take on both sides. When people want to use technology then try to take the time to discuss how it will be used, how you can measure it is doing what is needed and how you can work out how you deal with changes.

• [Original]Thou shalt not make fun of the tech skills of teachers or students, nor allow anyone else in the tech department to make disparaging remarks about them.
  [Techie]Thou shalt not presume to be all knowing gods yet still argue when a technician tells you it is illegal to copy commercial DVDs.
  [Me]Ok, let us all accept that there are stereotypes on both sides. Users will make stupid mistakes and it will be laughed at, usually when it is the same repeated mistake. Then again, you get teachers poking fun at the higher percentage of technical staff with elements of dyslexia / autism / other stereotypical conditions. Accept that there willing always be this one upmanship whilst each side treats the other as inferior. Also remember that the technically adept teacher and the educationally adaept techie are both at the top of the tree. You are the exception still so when the other makes a scathing comment it might not be aimed at you but a generalisation, try to find out what caused it and help people overcome the problem.

• [Original]Closing trouble tickets shalt not be thine highest calling; thou shalt strive to continually make the learning environment better.
  [Techie]You report a fault then we will follow it up. You are measured by exam results, we are measured by completion of tickets.
  [Me]Now we get onto the weighing the pig arguement. Both sides need to be measured but it is the big changes that need to be understood. Technology and how it helps deliver the Learning Environment cannot be done in isolation. It is a partnership. Every side has something to add. It will fall apart if anyone decides that others aren’t important.

• [Original]Thou shalt not elevate the system above the users.
  [Techie]Thou shalt accept that the system is our priority; it is set up to delivery as much as possible to as many different requirements as you gives us, but accept that your request may disrupt things for others. We sometimes have to work to a lower common denominator. It is part of the greater good.
  [Me]It is all very well thinking that the there is some big battle between users and system but it is a hard balancing act. We are back to the word compromise again. Both sides have very good reasons for standing their ground for somethings … it could be down to legal requirements such as Data Protection, it could be down to the flexibility required for personalised learning. Sit down and explain them and try to have an arbritrator to deal with the hard choices.

• [Original]The network will be never be perfect. Learning is messy. Get thyself over it.
  [Techie]Unplanned growth in computer systems leads to it falling over. We will keep things organised. Get thyself over it.
  [Me]There is a big difference between things just happening and planning flexibility into systems. No system is permanently fixed but you do have to be careful what you change. Again, it is compromise and planning that make the difference.

• [Original]When teaching someone a new skill, keep thy hands off the mouse.
  [Techie]We like to show you how to do things but repeated ‘but can’t you just do it for me’ will result in us just doing it for you. Don’t cry foul. Read our cribsheets, watch our training videos, listen to our advice and instructions. You are just one user of many.
  [Me]The two worst groups of people in the world to train are teachers and techies. Seriously. Teachers expect respect due to their position and techies based on their experience / knowledge. Introducing something new to either is beset with issues. Teacher are appraising you ability to train as well as what you are training them in, Techies are appraising your background before you even get into the in-depth stuff to see if you are a blagger. Teachers forget that the techie might not be an experienced trainer, after all, teachers did a degree and then more training (either as post-grad or on the job) to learn about it. The ability to train people can take time to develop. Give helpful feedback to support staff if you think that there are areas for improvement. You would do that for another teacher … give the techies the same courtesy. Techies do sometimes need to step back and work out what the user needs though … do they need a problem fixed or do they need to learn about the problem, what to do if it arises again and how to avoid it in the first place? This is a judgement call and by asking the teacher involved it can save a lot of problems later on. Also make sure you talk to whoever controls the CPD in the school as you might be in a position to identify training needs for staff.

• [Original] Thou shalt listen to requests with an open mind and respond in plain English.
  [Techie] Thou shalt ask for things in plain english and not buzzwords. Thou shalt understand that whilst with sufficient thrust pigs may indeed fly, it is not a good idea to be under them as they go overhead, be near them when they land and the RSPCA might get a tad annoyed. We will listen but be prepared for the answer to be no. If you ask for more information you will get it, and if you think I am talking down to you by using analogies about roads or cars it is because you won’t understand the short version, or have rolled your eyes when I mention something vaguely technical like CPU.
  [Me]We all have our own language. Lawyers have one, doctors have one, even priests have one. They are used to convey information and context in the most accurate and concise way possible. Translating it can take time, might need to be gone over a few times and is open to misinterpretation. When it comes to asking questions then yes, an open mind is needed, but often more context is needed too. Trying to convey the reasons why a request is made. Simply presuming that because you are a teacher you expect it to be done does not work, likewise just because you are a technical expert it does not mean that you, the techie, can say ‘no’ with no other comment or explanation. Try to come up with a common language to use … it will not be plain English. It will have some technical language in there as well as educational language. It will take time but once you have a good understanding it will help communication further down the line. Try having a glossary of terms for people to use, with examples.

• [Original]Blocking shall be controlled by educators, not filtering companies. Thy job is to enable learning, not enforce behavior.
  [Techie] Blocking shall be generally automated because there is not enough time in the world to check every single site. Just because we are sat at a computer all day it does not mean we are just surfing teh web, checking on dodgy sites. Perhaps if you kept the kids under control they would not want to get to the dodgy sites. And try talking to other teachers before asking for things to get blocked. I’ll happily block that games site that is dmaging your lesson, but you can explain to Maths why they can no longer access a site they pay a subscription to.
  [Me] This is all buck-passing. Get over it. Internet access is too large an area to make it black and white. I have already ranted about blaming technology when it is really about choosing the right tools to aid classroom management. Blocking should actually be controlled by the Head and Chair of Governors as *they* are the people that will get into trouble if things go wrong. It is also a case that the job of internet access is to enable learning but the job of the filters is to prevent inappropriate use. Unless all sides are prepared to sit down, discuss the appropriate use and how it is to be managed then we are just mudslinging.

• [Original]Thou shalt include students and teachers in decision-making about technology purchases and policy. Their interest is not an affront to your professionalism.
  [Techie] Thou shalt include the technical staff in the development of your curriculum. Their interest is not an affront to your professionalism.
  [Me]Again we are talking about planning here. It goes a bit like this. Someone comes up with requirements for what a system should do. This is based on how the learners are going to learn, how the teachers will teach, how things will be communicated inside and outside of the school and what are teh likely future changes too. A solution is put together to fit those requirements, sometimes out of an options papers or feasibility study to make sure all angles possible are covered adn then a group of key people make some decisions based on cost, capacity to deliver the requirements being completely met (or with some compromises). This all takes time, meetings and the experience to know how to do this efficiently, and this is before we get into things like procurement, etc. Companies will pay a lot of money to Project Managers to do all this, but many schools will take shortcuts for very justifiable reasons.
  • 1 – if the support team already have an off-the-shelf answer then they are likely to put that forward as a given option. It is likely to be cost effective because they are using already and will have the benefit of being setup quickly.
  • 2 – They are the technical experts and will often shorten the selection process because they have spoken with other schools about things that work or don’t work. If teachers and students in your school are not involved it doesn’t mean input from other students / teachers has not gone into the decision.
  • 3 – Last minute planning is the bane of the life of teachers and techies alike. Having to make quick decisions will mean not everyone can get involved. Accept that and make sure you plan better in future.
  • 4 – Technology is a tool. Everyone should get involved but someone has to make a decision about it. Battling about who has that power is pointless but it will vary from school to school who does it. Final decision on solutions should be made by senior management, not the network manager or head of ICT (or other head of department actually), but it should be part of the same process of looking at building developments around curriculum use, the curriculum itself, etc.

So there we have it.

Point, counter-point and hopefully some common sense. It has take over a week to knock this out and I know that there are areas for improvement, but I still find the techie / teacher bashing annoying. If it seems that I come down in favour of the techie side of things more than teachers that is because I still believe there is not a fair balance on respect between them. It will be ground down over the years and it is a lot better than were it was 5 years ago … but it is not changing enough for me to be happy.

A thread has popped up over on EduGeek.net about setting up user groups in schools … quite a step forward to have more input into how IT is set up at your school, but it is more than just about sharing a few ideas.

This isn’t too disimilar to one of the learning conversations at TeachMeet Midlands really. I put forward a few suggestions and requirements for this and will expand this a bit more.

1. It has to have the backing and support of your SLT. It may have been your idea, a department idea or their idea … whatever way there needs to be backing and support from SLT.
2. It has to have some defined goals, preferably some that tie into your schools’ development plan, is part of student voice and you have SLT backing that decisions / recommendations made by the group will be seriously considered. 
3. It needs to be tied into staff CPD to ensure that it is not just an elite few who benefit from it. The idea is that IT/ICT is a tool, so you need to work out how to get as many people using the tools and resources as possible. This means sharing by a variety of methods. It could be formal training sessions, it could be just-in-time training via video tutorial, it could be cascaded good practice within departments … the wider the range the more likely you will get uptake.
4. There needs to be a good cross-section taking part in these types of groups … not just the ICT elite … get more mid-range users involved too. Enthusiasm will often be more important than ability, but it is also handy to work with ‘realists’ (not pessimists) who can be critical friends.
5. Do not get disheartened if for every 10 ideas the group has only 1 gets used … it will grow over time. Eventually, you might be lucky enough to have a 50% development rate. Having good examples of who the ideas were used elsewhere can help.
6. Make sure that although only a few people will attend as representatives of the large school community, the conversations / discussions / presentations / videos / software is available to as many people as possible. It is an important factor that all feel included and helps with continuity planning for the group, people will move on, members will run out of ideas or take on other groups and tasks, new or existing staff also need a chance to have their input too.

There are a number of other things that could be put into this list and feel free to suggest more links and examples, this is not a definitive list of things to do, just a starting point.

There is more work to be done on suggesting *how* student voice can have an input in to user groups … I would be interested in hearing of examples.

Yesterday down at InfoSec / IT Support Show. After getting down there via a later (and cheaper) train I met up with Tom Newton from Smoothwall. A quick dash into infosec was completed and a lovely, chilled Innocent Smoothie was quaffed!

Why did I go down to is clearly not an education event? Actually, it is an education event. And banking. And for lots of other sectors too. In fact, if you have IT then it is relevant.

InfoSec was very good but I found the IT Support show a tad naff. The first thing to notice is that it all seems so much smaller this year. The layout is a bit more squashed than Olympia but of definitely did not feel empty, which some previous shows did.

The IT Support show was upstairs and slightly disappointing. I went with the goal of looking for more resources and advice for service management for our schools, but most people there had no interest in education, limited (or no) knowledge of the needs of schools and didn’t even pay attention to some key comments I made such as “I am not looking to bulk buy but give advice to schools!” A few notable exceptions were very helpful.

Hornbill fully accepted that whilst they have some fantastic strategies for service management and support, they could not get them to a price suitable for schools individually, but could cater for clusters or at LA procurement level.

Tools4ever still have two brilliant products which have been developed schools in mind, one for self-service password reset and the other for user administration where it gathers information from SIMS or CMIS to populate the AD and other systems.

There are a number of slimlime helpdesk solutions available from folks like sitehelpdesk.com and I can’t forget to mention NetSupportDNA too (if you can afford the whole lot!)

Back down at InfoSec I spent my time looking at two areas, information security and anti-virus options. Since most Northants schools are connected via EMBC then I wasn’t going to spend lots of time looking at alternative (ie additional) filtering solutions. I can talk about that another time or you can have a look edugeek.net.

The usual suppliers were present: Symantec
McAfee
Norman
Trend micro
Kaspersky
Sophos
and others with systems that plugged into particular solutions.

I was quite pleased with the chat with Trend, McAfee and Sophos. They understood the issue of having aging devices getting laden down with bloated signatures making machines grind to a halt. Trend’s solution is to remove a chunk of the client and make it look more online as needed.

Sophos spoke about using their free rootkit killing tool to help deal with staff or student machines when they have been off network for a period of time.

They all have decent management consoles and that is an important factor when checking that you are on top of things rather than having to do rushed fixed when a problem arises.

Information security I’ll talk about next week as Becta recently refreshed their data handling guidance.

I’ll be honest and say that there will be something in this post for everyone … something positive and something that will knock you down so that it makes you re-examine a few of your preconceptions and practices! I make no apologies for this and have done it purely to get people to think all that more carefully about how they approach each other’s views and make the common mistake that others are incompetent, inflexible or just doing things ‘wrong’. They may be thinking the same of you.

Why am I making this post? It all stems from a number of conversations about eSafety, the roles of different staff in educational institutes and the ongoing battle of reliance of technology to solve problems.

Let us fade back a few years to when I was a lowly mouse-cleaner support technician who decided to write an Acceptable Use Policy. I actually wrote 3 sections and it was done with the help and support of a few friends who worked in the ISP sector. It was based around a very precise T&Cs document, with an accompanying more readable description of the services the school ran with the boundaries about how users could use those services and finally an agreement statement that was a basic summary. Since I was a lowly techie it was passed through the chain, adapted and the T&Cs were dropped (not surprised to be honest … even *I* was a bit wary of the legalese in it). The students sign the agreement and the AUP Terms were posted in each IT room. Hmm … not really a rigorous plan for eSafety and still centred around the teacher telling the student off for doing general naughty things and the IT team telling them off for messing about on the computers (searching for stupid stuff on the web, trying to play games, etc). As much as I enjoyed the feeling of control and even felt that by making the students ‘fear’ me it would allow the teachers to get on with the job. However, as I started to become more interested in the application of IT in schools I rethought a number of my ideas around this.

Introducing a 3 strikes policy went some way to trying to push some sense of responsibility onto the students but it still separated the school discipline and the IT discipline. A new Vice-Principal meant that some of this was taken out of our control and I was not happy about some of that … the lack of understanding how filtering worked and how the IT could be abused by senior staff at the school left me feeling powerless as others took more control and made (in my opinion) wrong decisions. Oh how we learn and grow though.

Moving on to another school as a Network Manager I knew that this had to change and the move was made to trying to ensure the responsibility was with the teacher and form tutor for the discipline, but the IT Team would gather evidence … but is that just a case of passing the buck? So, we had filtering in place to make life as easy as possible for the teachers to understand why things worked the way they did. Teachers and students, generally, had the same access and this caused problems. Sites that disrupted lessons where blocked, but then the students used email to ‘chat’ during lessons. We couldn’t block them from that because it was then needed by other subjects … Getting promoted to the Senior Leadership of the school helped to work with staff so they understood the boundaries and having an ICT working group helped feedback into defining those boundaries. They were adapted so that staff could access things like youtube and facebook, and students could use blogger where needed. There is so much more needed but the staff were not ready for it. Things are still moving at the school and it looks as if they are now ready to take more ownership too.

My side line has been with a support community for IT Professionals in education. The IT Managers, Network Managers, System Admins, IT Technicians … a variety of titles and a variety of job roles but generally with the remit of setting up and looking after the IT in a school or schools. This takes me back to my power hungry days of control and there is the idea that because we understand the technology best that we should make the choices about it. Whilst still at the above school I also started working with the LA on a number of projects including working with the local RBC so I had an inside view to their view of the technology as well.

It ended up with me coming to the LA for 12 months to work on a variety of projects, working with some brilliant colleagues and over the last 10 years from starting in the education sector to now I have come across a wide range of technologies and approaches to eSafety and education. The conversations, discussions and heated debates will go on and on, and recently there was one about the use of tinyurl that made me re evaluate a few things and stick things down on paper. Eventually I have come to the following conclusions. Look away now if you are easily offended but stick with it if you want to see my reasoning.

1 – People sometimes are too blinkered to try and understand why technology can be bad, and feel that their small bit (that is affected by larger choices) is being targeted.

2 – Technology is not the answer. Relying on it and relying on the people that control it is not only bad but it is short-sighted.

3 – Disregarding the people who understand the technology is just as short-sighted, nay, even stupid.

4 – Do people really understand the technology involved? Heck, I don’t know everything and if you think you actually do then you are being short-sighted and fooling no-one but yourself.

5 – Top-down decisions are often stupid, and so are bottom-up decisions. Let’s face it … you can’t trust those people in the middle either! Don’t trust the techies, the teachers the LA or the RBC to get it right!

hmmm … there … I think that pretty much covers how people feel about it all. Doesn’t it sound stupid when you see it all together.

Ok, let’s look at the Tinyurl incident first. That will cover the RBC side of things. Tinyurl.com is a fantastic way of shortening really long URLs so that it doesn’t break apart the format or flow of documents, can be customised to make it easy to remember and for things like twitter or IM it keeps messages short. So, what is so wrong with it then? Well, the way the site works is that it wraps the header of the target website as it passes through filters. What that means is that I can create a link for the playboy site and for some filters it will not get automatically get blocked. This works for a variety of sites and I will actually be spending some time of the coming weeks to look at it in more depth, examining the actually technical process of how the website passes through the filter and seeing how things can or can’t be tweak. The main product I will be looking at for this is NetSweeper as this is what my local RBC use. How do you get around this problem? Simple … you block tinyurl.com. There, problem solved. But what about those people who use it and have it in their presentations or on websites? Heck, I have seen it in white papers, research studies and used by those working in government agencies or projects? Oops.

Well, in a number of places schools can actually take control of the filters supplied by the RBC and change the settings to allow tinyurl.com through. Erm … but doesn’t this then allow people to use it to bypass filters? Why yes … it does. Ah …

Ok, then this brings onto the idea of who controls filters. The number of teachers I hear moan (and I do really mean moan) about that fact that they cannot just change something when they need or want it, or that it shouldn’t be locked down in the first place … if I have a penny for each time I could definitely have a decent curry at least, with starter, poppadoms and peshwari nan. The number of techies who moan that teachers constantly demand unfiltered access with no concept of the nastiness that is out there or, when given extra access on their school ‘teacher-only’ laptop, let students go on it (on the teacher’s account) to search the internet … well, that would pay for the train ticket to London for me to go to the nice Indian restaurant not far from Olympia that I usually visit when at BETT. Add the number of techies and teachers who moan about the restrictions put in place by the LA / RBC … I could fly out to Mumbai to have the flamin’ meal! Who’s right and who’s wrong? They all are!

Again, based around the RBC and schools in my LA I will put forward how the technology works. Most large filters / proxies do so by checking the URL / IP of the website against a known database of dodgy sites. There is an official list put out by the Internet Watch Foundation that contains the sites you do not want to visit … ever! On top of this there are various categories such as porn, profanity, weapons, web email, web chat, drug use, gambling, match making, etc …. most filters are pretty extensive and some websites fit into more than one category. If a site is not in the list then the servers do a bit of intelligence gathering and look at the content. This will then plonk the site into a holding place whilst it gets reviewed. You still see the site but it will shortly be sorted.

Some filters operated at school level will look at the content of the page each and every time you view a site. This is costly and requires some hefty computers and interesting software. It can seriously slow internet access down if there is a lot of content checking to be done.

To get around the issue some schools will use a white list, a list of sites it knows are ok. The only problem is that access to adding sites is restricted otherwise all sorts of things can be added. And we come onto the first battle between school and LA / RBC, or the first battle between techie and teacher. Present policies in schools operate around the idea of block first and release later, and this applies to everyone. A lot of teachers don’t understand about the change control needed so that should something get through that shouldn’t, then we know who made the change. Since eSafety is ultimately in the hands of the Head and Chair of Governors then *they* are often the people that don’t want it to be too easy for anything to get through! I can’t blame them for that.

So, we then get some schools that leave things too loose so that it removes potential conflict between teachers and techies, or it is seriously loose (at the RBC / LA filter level) because the school is running software / filters in house to make it more flexible. Again, the battle between teacher and techie happens. See my comments about power and control earlier and note that this is often done for the best intentions.

So, we are left with filters that are too harsh because they block things like tinyurl.com or too loose because you can access all but the nastier things that the IWF want blocked. Oh … I haven’t really mentioned students yet either! You know … those funny things that can sometimes smell and tend to create a lot of noise? If we are talking about secondary (my main experience) then we are talking about 1/2 to 2/3 of them are actively trying to bypass whatever security s on the computers and get round the filters to listen to the radio, look at animé or play games, usually instead of getting on with the work they are meant to be doing.

We get to the stage where teacher A asks you to block the internet for student z because they are always on email or playing online flash games instead of doing their work … and teacher B says they can’t be blocked because student z needs access tot he internet for research and to complete work. Hmm … a chance to annoy those teachers reading perhaps? Classroom management! DO NOT RELY ON TECHNOLOGY!!!!!!

Ok, a bit harsh perhaps but try not to segregate abuse of resources and classroom management and discipline. It is a mistake I have made in the past and have tried to point out the flaws about it to people ever since. Technology takes you so far, but you need to do some work too.

However, technology can help and obnoxious techies (their turn now) who are not helpful and look down at you because you don’t have access to the technology (you may understand it, you might never get the chance to find out though) and will take control! Well, that needs to be more relaxed and there are ways of doing this.

The RBC and LA will always go for the highest common restrictions but they can have some darned good advice actually, but be wary that you will have to translate and adapt things for your school!

Ok … John Sutton made a post about AUPs the other day and I posted a response to it based around how I felt that they needed to grow within a school. http://bit.ly/11A1qu for the original post but here is my comment.

I consider AUPs to be a four step process.

1 – get the staff to understand the use and abuse of technology (AUP is not just about ‘Net access!) and why technology is a tool, kids are entitled to use whatever tools are available and why the first thing they should consider is the school discipline model and their own classroom management. Often greeted with disbelief that technology will not fix all their problems (and then onto heated discussions about filters, why staff are better than students and should be completely unfiltered and who are these IWF folk anyway!)

2 – Foster an environment of understanding and boundaries with the students and their parents. There are limits, the same way that life is full of limits. Learning about the responsibilty that students have in the worl is important and within the school access to resources is one of these areas, whether it is to PE equipment (wow … that discus really hurts when flung at someone’s head, and no … you shouldn’t intentionally hit the cricket ball at the windows!) or technology. If we don’t show trust to start with, it is nothing personal but it is about expanding your limits at a safe rate.

3 – Ok … if you really want to have a finite set of rules then here you go. A technical and legal-ish defined set outline the services available, how they can be used, their limits and the processes centred around their development, growth and how changes are made.

4 – Agreement. The AUP is implicit as it is part of the school ethos. The same way you agree to wear a particular uniform, to take part in certain activities, to be a constructive member of the school community then you also know there are limits (expandable depending on your growth) that you have to operate in. This applies to staff and students. Some schools opt to have the same set of limits for both … it’s a school by school thing and is based on whether you are happy that use of technology is embedded in the school. The agreement is a conscious move by the school, the staff, the students and the parents to affirm that the understand this. If they refuse to sign then the school must question whether the family truly understands what the school does with regards to technology as part of the curriculum and ethos of the school. If, after discussion with the family (or teacher) there is still a refusal to sign then the school repeats that they are the limits that the school applies. Lack of affirmation to follow them does not mean opt out. It means that you are still in but if you complain when your son / daughter (or you as a teacher) gets hauled up about breaches of the AUP then you cannot use refusal to sign as an excuse!

A number of groups (including rehab groups, church groups, sporting societies, etc) will affirm their stance in agreement with their group on a regular basis. refusal to do so does not mean they are not part of that group, but it is a positive thing that should be embraced. If someone does not take part in it then it is a chance for other members to take the person to one side and find out what the issue is. It can be something minor … a few tiny bits of phrasing that is difficult to publicly say … or disillusionment with the group or a felling that they need additional support.

So .. it is not just about AUPs and technology. It is about affirmation and being positive about your role and the limits you operate in, help define and help grow.

So, there you have it. In spite of doing my best to annoy pretty much everyone, most of the above is based around compromise and a common understanding.

Ok, group hug is over and done with, and normal service now being resumed.

If you want to take more control and ownership as a school, as a teacher or as a techie then I will highlight a number of things for you to look at and investigate. I am not saying that these are right or wrong, but most have sufficient background behind them to show good practice. Also remember that I am basing some of my comments about how filter systems operate on my local RBC. Your Mileage May Vary and access to this level of control may be different from LA to LA, even within the same RBC.

1 – RBC filters are granular. It is common to set a site default level. This means that should people just go onto any old machine and try to access the ‘Net then they get a predetermined level of filtering. Set this as high as possible so people will not just go straight in and browse when bored. For us we can also set it so that when users log into the RBC portal they get a filter level as defined by the school. This means that should the site level be 4 (the most restrictive) and a student logs in then he/she could pick up level 3 or 2. This not only gives you the option to be more flexible, but to also allow you to audit when and what students are doing. You might want to set staff at level 1, the most relaxed, and give them access to tinyurl and youtube. Remember that if you do this then when they are logged in and have their computer hooked up to the projector, should then click on a wrong link then it could take them somewhere very embarrasing, and there is also the temptation for staff to allow students to use their computers / accounts! Data Protection stuff is for another day!

2 – If you want more control then yeah, run your own filtering, but be careful! There are a number of products out there that will do what you want, can sit inside your school and can give you even more granularity. They can tie into your school network so you don’t have to log in to anything, it automagically picks up who you are and what you are entitled to. Access to this sort of control can be delegated to staff (ie temporary blocking of ‘Net access for a specific student) but remember that this is admin work … something that Unions get a tad unhappy with if they find out that teachers are doing it. Also, one teacher may block, another unblock the student and it becomes political. You need to have some sort of change management in there … and this is more paperwork (electronic or paper-based). And this doesn’t get around the fact that you are still not allowing teachers to unblock specific websites. This level of control gets a little scary, but what it does mean is that you can have more control about what each specific group can and cannot use! This harks back to allowing the boundaries / limits that we put on our students to grow.

3 – This is still bypassing a chunk of the classroom management that I made a fuss of earlier. There are a number of tools that can help with this, some automated and some they truly do put power in the hands of the teacher again. If we take the automated tools first, there are the keyloggers and screen grabbers. If they see something going on (eg typing a bullying email) then key words will be recognised and a screenshot taken, a nominated person emailed with the screen shot (sometimes a techie, sometimes a head of year) and it is dealt with under the school’s discipline code. This works in two ways, it creates the environment of controlled watching (ie big brother) whilst forcing students to take responsibility for their actions. The down side is that it is too police like and open to abuse by pupils using other pupils’ accounts. The other option is to use active monitoring tools such as AB Tutor Control or SynchronEyes. Tools that allow a teacher to view each workstation in real time, lock out browser access if required, share a desktop with a student to support them and other tools that each piece of software gives you (eg SynchronEyes gives a virtual interactive whiteboard for the class to use). Again, this fits into the growth of boundaries as you will spend less and less time monitoring as students show responsibility.

So, we have a range of tools, with a range of people having ownership. There should be enough there for everyone really.

Your discipline policy will vary from school to school, but I would recommend that there should not be a difference in the status of teachers and support staff in it, unless it is a defined role (eg behaviour management tutor, dedicated pastoral specialists, etc). This helps to break down the barrier of them and us (from both sides).

Work with your LA to understand the limits of the technological solutions available and rather than have a go for it not being flexible enough have a look at whether you need to employ alternatives to fill gaps or give you room for expansion and growth.

Remember that as a teacher or techie, the responsibility does not ultimately fall with you, but your head. If he/she needs educating as to the possibilities available for using sites that are typically blocked then you need to show you still have some safeguards … an audit trail … and ensure that this is based on a whole school process, not just something for you as a techie or an ICT evangelist!

Finally, you may have realised that I haven’t actually been that offensive to anyone, just making use of stereotyped view points to show how little communication there may be within a school, between schools and LAs / RBCs and between society in general.

This is not a perfect blog entry, far from it. It has a number of holes that need patching over the next year and is based on a considerable amount of common sense. It has been aided and abetted by the AUP produced by an LA colleague, but conversations with frustrated ICT evangelists, conversations with Techies, with LA staff, with RBC staff and with providers of tools for schools.

It has also been aided by chatting with students, who are the first to admit that they want to push the boundaries they have been given, but they want something to push against otherwise how do they know they are growing? But the second thing they usually admit is that given a choice between work and play … it takes a good teacher to make them want to work and it take a good IT system to allow them to do it!

*Edit – decided to remove the password protection from this as I am pretty sure that I have covered everything I need to and no-one I have showed it to yet has threatened me with castration!*