The network protect to not allowed anyone outside to access and check such as these data, but you are from home so you get already Permeasion to access data. 

But IT also must thing about this there is auth of ospf and opsfv3 have encrypted for messages, but this also cant apply every where, the router decrease it throughput foreach encryption it done, we use encryption out but between router insides no I dont think so.

Again we put key for outside door but we dont put key for living room or kitchen doors. 

MHM

These issues are commonly detected in cybersecurity and IT audits that most universities go through once a year, so it not very common that using an access port one can get to where you got. But I can't say I haven't seen OSPF deployments with no password and no passive interface. You should bring this to attention of right people and suggest an IT security audit to be done.

Unfortunately, consideration of security is often overlooked in many aspects of IT, not just networks.

Possibly there's laziness involved, but more often I've found its due to lack of knowledge.  (Hey, why you think we have certifications for "security"?)

Also, sometimes (rarely) it's a "conscience" decision.  I.e. in some cost benefit analysis, the cost of doing it, and supporting it, is considered more than the potential negative impact cost.

In a university environment, it's possible only the student networks are so open.  Possibly, faculty and admin networks are better secured.