On Thu, May 12, 2005 at 11:13:13AM -0700, Jake-F Harwood wrote:
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> SNS was (paused project now), working on a win script that would allow the
> top 10 or 15 ports of interest to be accessed by the campus scanners.
>
> as SNS finds hosts that are running SP2 and firewalled, we were planing on
> notifying and having the users open the ports so we can audit services, and
> check for patch revision.
>
> the down side to this is, if you get hacked and someone installs an ftp
> server,or back door you most likely not get a security notification from
> SNS, until you cause an operational problem or recive a bandwidth usage
> report from CSN.
If the hackers are actually accomplishing anything (that is, if their
FTP server or back door is available to the net), SNS should be able
to scan for them.
-- Tom Holub (tom_holub@LS.Berkeley.EDU, 510-642-9069) Director of Computing, College of Letters & Science 249 Campbell Hall <http://LS.berkeley.edu/computing/> ------------------------------------------------------------------------ The following was automatically added to this message by the list server: For information about Micronet, including subscribing to or unsubscribing from its mailing list and finding out about upcoming meetings, please visit the Micronet Web site: <http://micronet.berkeley.edu/>.Received on Thu May 12 13:24:03 2005
This archive was generated by hypermail 2.1.8 : Thu May 12 2005 - 13:24:04 PDT