CSIRT

Security advice

Anonymous
Monday, February 13, 2012 - 19:43
CSIRT
advice
incident response
security
A few simple things are essential for the security of any network connected to today’s hostile Internet. Up-to-date patches All software, operating systems and applications, needs regular updates to remove vulnerabilities as they are discovered. These patches should be installed as promptly as possible after they have been properly tested. Particular care needs to be paid to applications for which automatic updating is not practicable; for example, most Web-based applications. You should contact your software vendor for details of when updates are released.
Read more

Reporting spam or other e-mail abuse

Anonymous
Monday, February 13, 2012 - 19:41
CSIRT
abuse
incident response
reporting
security
Abuse from Janet addresses or domains See the general guidance Reporting abuse originating from Janet for notes on which domains and IP addresses are part of Janet.
Read more

Reporting abuse originating from Janet

Anonymous
Monday, February 13, 2012 - 19:37
CSIRT
abuse
incident response
reporting
security
Which IP addresses are Janet? If you can identify from routing information the Autonomous System number of the IP address concerned, Janet is AS786 and this is a clear indication that we are responsible. Otherwise, almost all Janet addresses are recorded in the RIPE Regional Internet Registry, with routes or other information linking them to Janet.
Read more

Reporting abuse

Anonymous
Monday, February 13, 2012 - 19:35
security
CSIRT
incident response
abuse
reporting
Read more

Contact CSIRT

James Davis
Monday, February 13, 2012 - 19:25
CSIRT
Contact
Services
incident response
security
Team contact details You can contact Jisc (formerly Janet) CSIRT by email (preferred) or telephone during service hours; or by post.   Email:  irt@jisc.ac.uk Telephone:  0300 999 2340from outside UK: 00 44 1235 822 340
Read more

Useful references

Anonymous
Thursday, February 9, 2012 - 11:04
Services
primary nameserver
useful references
DNS resolver
CSIRT
advice
configuration
nameservers
DNS
Albitz P. and Liu C., DNS and BIND 4th edition (O'Reilly 2001) ISBN 0-596-00158-4. Larson M. and Liu C. DNS on Windows 2000 2nd edition (O'Reilly 2001) ISBN 0-596-00230-0. RFC 1034 Domain Names - Concepts and Facilities
Read more
6 June 2012 at 11:03am

Privacy and Incident Response

Andrew Cormack
CSIRT
Data Protection Directive
Privacy
incident response
At a meeting of TERENA's CSIRT Task Force last week, I presented an updated version of my paper on Privacy and Incident Response.
Read more
6 June 2012 at 10:53am

Standards Highlights for Incident Response Teams

Andrew Cormack
CSIRT
incident response
An interesting presentation by Michael Brophy of Certification Europe at TERENA's CSIRT Task Force meeting last week drew attention to three standards likely to be relevant to Incident Response Teams: ISO20000, ISO27001 and BS25999. Unfortunately getting copies of these standards involves payment, but the highlighted content suggested this may be worthwhile.
Read more
4 July 2012 at 4:51pm

EC Internal Security Strategy

Andrew Cormack
CSIRT
Cybercrime
incident response
The European Commission have recently published a more detailed action plan to support their draft Internal Security Strategy from earlier this year (that's "internal" as in "within the continent", by the way!).
Read more
6 June 2012 at 9:58am

European Internet Resilience

Andrew Cormack
CSIRT
incident response
The House of Lords has now published its report on the EC Communication on Protecting Europe Against Large Scale Cyber-Attacks.
Read more
Subscribe to CSIRT