Category: SANS Internet Storm Center

Cybertalent on the Cheap, (Mon, Dec 22nd) 0

Cybertalent on the Cheap, (Mon, Dec 22nd)

I recently attended an information security meetup and one of the main topics was building up security resources on a state/local government budget. This is not an easy task, but is something many people are facing. When recruiting on a budget, it seems best to determine what makes a good security analyst

Which NTP Servers do You Need to Patch?, (Sat, Dec 20th) 0

Which NTP Servers do You Need to Patch?, (Sat, Dec 20th)

While people generally know where their real NTP servers are, all to often they dont know that theyve got a raft of accidental NTP servers – boxes that have NTP enabled without the system maintainers knowing about it. Common servers on the network like routers or switches (often when these are NTP clients, they are also NTP servers), PBXs and VOIP gateways, mail servers, certificate authorities and so on

Bridging Datacenters for Disaster Recovery – Virtually, (Fri, Dec 19th) 0

Bridging Datacenters for Disaster Recovery – Virtually, (Fri, Dec 19th)

Its been a while since we talked about Disaster Recovery issues – the last diary I posted on this was on using L2TPv3 to bridge your Datacenter / Server VLAN to the same VLAN at a DR site, over an arbitrary Layer 3 network ( https://isc.sans.edu/diary/8704 ) Since then, things have changed. Theres a real push to move DR sites from a rack in a remote office location to recognized IaaS cloud locations