University of Maastricht right now:

*Clop clop
Who's there?
*Clop
Clop who?
*Clop ransomware!

(Klop (clop as pun in this context) is knock in Dutch)

Ah yes, the story of universities worldwide.

Uni: come to us to learn about technology and science! We know best!
Also uni: utterly fails at anything with technology

@epse
Not worldwide though.
I went to TU Chemnitz and they know their shit.
Eduroam is secured with per-app passwords and an ssl-cert.
Eduroam-APs are separating devices into subnets, thus making port-scanning harder.
User-auth is done with their own openid-server.
Their entire infrastructure, including desktops, is linux based (windows only as VMs).
They even host a gitlab server for the students.

@metamourge I mean mine has a private GitHub instance and similar things for eduroam, but nobody gets given the cert for it so you select "do not verify cert". It seems to me that there is a layer of incompetent people who try to do way too much over a layer of very highly competent people with too much to do.