[Micronet] New and Improved SNS security alerts for DHCP hosts

classic Classic list List threaded Threaded
5 messages Options
Reply | Threaded
Open this post in threaded view
|

[Micronet] New and Improved SNS security alerts for DHCP hosts

Dedra Chamberlin
Hello Micronet,

Beginning today, you will notice new and improved content for System and
Network Security alerts related to devices using the campus DHCP service.

Security alerts for vulnerable, potentially compromised, and compromised
DHCP hosts will now be sent to both the registered security contact
mailing list *and* the person who registered the device for the campus
DHCP service (previous alerts were sent only to the security contact).

You can see sample content for these new alerts, which was reviewed and
updated at our recent Security Operations Workgroup meeting, at the link
below:

https://wikihub.berkeley.edu/display/sns/DHCP+communication

Information about the Security Operations Workgroup, including
information for how to join this open forum, is available here:

https://wikihub.berkeley.edu/display/sns/Security+Operations+Workgroup

Enjoy your new security alerts!

- Dedra
------------------------------------------------------------------
Dedra Chamberlin, Manager
CalNet - Identity and Access Management
SNS - System and Network Security

 
-------------------------------------------------------------------------
The following was automatically added to this message by the list server:

To learn more about Micronet, including how to subscribe to or unsubscribe from its mailing list and how to find out about upcoming meetings, please visit the Micronet Web site:

http://micronet.berkeley.edu

Messages you send to this mailing list are public and world-viewable, and the list's archives can be browsed and searched on the Internet.  This means these messages can be viewed by (among others) your bosses, prospective employers, and people who have known you in the past.
Reply | Threaded
Open this post in threaded view
|

Re: [Micronet] New and Improved SNS security alerts for DHCP hosts

Beth Muramoto
Dedra,

If you are both the security contact as well as the person who  
registered the device, as I am, will I be getting 2 email messages?

With only a handful of exceptions, I've registered most of the devices  
that are using the campus DHCP service. This was so I could track who  
was registered and contact them when I received a security alert.

Thanks!

Beth


On Sep 1, 2010, at 2:52 PM, Dedra Chamberlin wrote:

> Hello Micronet,
>
> Beginning today, you will notice new and improved content for System  
> and
> Network Security alerts related to devices using the campus DHCP  
> service.
>
> Security alerts for vulnerable, potentially compromised, and  
> compromised
> DHCP hosts will now be sent to both the registered security contact
> mailing list *and* the person who registered the device for the campus
> DHCP service (previous alerts were sent only to the security contact).
>
> You can see sample content for these new alerts, which was reviewed  
> and
> updated at our recent Security Operations Workgroup meeting, at the  
> link
> below:
>
> https://wikihub.berkeley.edu/display/sns/DHCP+communication
>
> Information about the Security Operations Workgroup, including
> information for how to join this open forum, is available here:
>
> https://wikihub.berkeley.edu/display/sns/Security+Operations+Workgroup
>
> Enjoy your new security alerts!
>
> - Dedra
> ------------------------------------------------------------------
> Dedra Chamberlin, Manager
> CalNet - Identity and Access Management
> SNS - System and Network Security
>
>
> -------------------------------------------------------------------------
> The following was automatically added to this message by the list  
> server:
>
> To learn more about Micronet, including how to subscribe to or  
> unsubscribe from its mailing list and how to find out about upcoming  
> meetings, please visit the Micronet Web site:
>
> http://micronet.berkeley.edu
>
> Messages you send to this mailing list are public and world-
> viewable, and the list's archives can be browsed and searched on the  
> Internet.  This means these messages can be viewed by (among others)  
> your bosses, prospective employers, and people who have known you in  
> the past.

***********************************************
Beth Muramoto
Computer Resource Specialist
Graduate School of Education
University of California, Berkeley
1650 Tolman Hall
Berkeley, CA 94720
Email:  mailto:[hidden email]
Phone:  (510) 643-0203
Fax:  (510) 643-6239

The Formula for Success:  Underpromise, overdeliver

                                - Tom Peters

***********************************************




 
-------------------------------------------------------------------------
The following was automatically added to this message by the list server:

To learn more about Micronet, including how to subscribe to or unsubscribe from its mailing list and how to find out about upcoming meetings, please visit the Micronet Web site:

http://micronet.berkeley.edu

Messages you send to this mailing list are public and world-viewable, and the list's archives can be browsed and searched on the Internet.  This means these messages can be viewed by (among others) your bosses, prospective employers, and people who have known you in the past.
Reply | Threaded
Open this post in threaded view
|

Re: [Micronet] New and Improved SNS security alerts for DHCP hosts

John Kim
Except for cases where the security contact email address is the same as the
individual that registered for DHCP service, yes, you will receive two
copies of the emails.

If your only reason for registering the computers yourself is to keep track
of the user for security notices, the new change should address it.  You can
now offload this lookup/forward process by coordinating with the user to
de-register and re-register to the user's CalNet login.

On 09/01/2010 03:40 PM, Beth Muramoto wrote:

> Dedra,
>
> If you are both the security contact as well as the person who  
> registered the device, as I am, will I be getting 2 email messages?
>
> With only a handful of exceptions, I've registered most of the devices  
> that are using the campus DHCP service. This was so I could track who  
> was registered and contact them when I received a security alert.
>
> Thanks!
>
> Beth
>
>
> On Sep 1, 2010, at 2:52 PM, Dedra Chamberlin wrote:
>
>> Hello Micronet,
>>
>> Beginning today, you will notice new and improved content for System  
>> and
>> Network Security alerts related to devices using the campus DHCP  
>> service.
>>
>> Security alerts for vulnerable, potentially compromised, and  
>> compromised
>> DHCP hosts will now be sent to both the registered security contact
>> mailing list *and* the person who registered the device for the campus
>> DHCP service (previous alerts were sent only to the security contact).
>>
>> You can see sample content for these new alerts, which was reviewed  
>> and
>> updated at our recent Security Operations Workgroup meeting, at the  
>> link
>> below:
>>
>> https://wikihub.berkeley.edu/display/sns/DHCP+communication
>>
>> Information about the Security Operations Workgroup, including
>> information for how to join this open forum, is available here:
>>
>> https://wikihub.berkeley.edu/display/sns/Security+Operations+Workgroup
>>
>> Enjoy your new security alerts!
>>
>> - Dedra
>> ------------------------------------------------------------------
>> Dedra Chamberlin, Manager
>> CalNet - Identity and Access Management
>> SNS - System and Network Security
>>
>>
>> -------------------------------------------------------------------------
>> The following was automatically added to this message by the list  
>> server:
>>
>> To learn more about Micronet, including how to subscribe to or  
>> unsubscribe from its mailing list and how to find out about upcoming  
>> meetings, please visit the Micronet Web site:
>>
>> http://micronet.berkeley.edu
>>
>> Messages you send to this mailing list are public and world-
>> viewable, and the list's archives can be browsed and searched on the  
>> Internet.  This means these messages can be viewed by (among others)  
>> your bosses, prospective employers, and people who have known you in  
>> the past.
>
> ***********************************************
> Beth Muramoto
> Computer Resource Specialist
> Graduate School of Education
> University of California, Berkeley
> 1650 Tolman Hall
> Berkeley, CA 94720
> Email:  mailto:[hidden email]
> Phone:  (510) 643-0203
> Fax:  (510) 643-6239
>
> The Formula for Success:  Underpromise, overdeliver
>
> - Tom Peters
>
> ***********************************************
>
>
>
>
>  
> -------------------------------------------------------------------------
> The following was automatically added to this message by the list server:
>
> To learn more about Micronet, including how to subscribe to or unsubscribe from its mailing list and how to find out about upcoming meetings, please visit the Micronet Web site:
>
> http://micronet.berkeley.edu
>
> Messages you send to this mailing list are public and world-viewable, and the list's archives can be browsed and searched on the Internet.  This means these messages can be viewed by (among others) your bosses, prospective employers, and people who have known you in the past.

--
John Kim
System and Network Security
http://security.berkeley.edu

 
-------------------------------------------------------------------------
The following was automatically added to this message by the list server:

To learn more about Micronet, including how to subscribe to or unsubscribe from its mailing list and how to find out about upcoming meetings, please visit the Micronet Web site:

http://micronet.berkeley.edu

Messages you send to this mailing list are public and world-viewable, and the list's archives can be browsed and searched on the Internet.  This means these messages can be viewed by (among others) your bosses, prospective employers, and people who have known you in the past.
Reply | Threaded
Open this post in threaded view
|

Re: [Micronet] New and Improved SNS security alerts for DHCP hosts

Beth Muramoto
John,

Thanks for the explanation about the emails and for the valuable and  
enlightening information about how the user can now register  
themselves with this new system, placing the responsibility of taking  
care of the compromises themselves. Of course, I will continue to be  
the "policer" of the compromises, but it sounds like the record  
keeping will be much easier for me with this new system and for that,  
I'm sincerely grateful.

Beth


On Sep 1, 2010, at 3:56 PM, John Kim wrote:

> Except for cases where the security contact email address is the  
> same as the
> individual that registered for DHCP service, yes, you will receive two
> copies of the emails.
>
> If your only reason for registering the computers yourself is to  
> keep track
> of the user for security notices, the new change should address it.  
> You can
> now offload this lookup/forward process by coordinating with the  
> user to
> de-register and re-register to the user's CalNet login.
>
> On 09/01/2010 03:40 PM, Beth Muramoto wrote:
>> Dedra,
>>
>> If you are both the security contact as well as the person who
>> registered the device, as I am, will I be getting 2 email messages?
>>
>> With only a handful of exceptions, I've registered most of the  
>> devices
>> that are using the campus DHCP service. This was so I could track who
>> was registered and contact them when I received a security alert.
>>
>> Thanks!
>>
>> Beth
>>
>>
>> On Sep 1, 2010, at 2:52 PM, Dedra Chamberlin wrote:
>>
>>> Hello Micronet,
>>>
>>> Beginning today, you will notice new and improved content for System
>>> and
>>> Network Security alerts related to devices using the campus DHCP
>>> service.
>>>
>>> Security alerts for vulnerable, potentially compromised, and
>>> compromised
>>> DHCP hosts will now be sent to both the registered security contact
>>> mailing list *and* the person who registered the device for the  
>>> campus
>>> DHCP service (previous alerts were sent only to the security  
>>> contact).
>>>
>>> You can see sample content for these new alerts, which was reviewed
>>> and
>>> updated at our recent Security Operations Workgroup meeting, at the
>>> link
>>> below:
>>>
>>> https://wikihub.berkeley.edu/display/sns/DHCP+communication
>>>
>>> Information about the Security Operations Workgroup, including
>>> information for how to join this open forum, is available here:
>>>
>>> https://wikihub.berkeley.edu/display/sns/Security+Operations+Workgroup
>>>
>>> Enjoy your new security alerts!
>>>
>>> - Dedra
>>> ------------------------------------------------------------------
>>> Dedra Chamberlin, Manager
>>> CalNet - Identity and Access Management
>>> SNS - System and Network Security
>>>
>>>
>>> -------------------------------------------------------------------------
>>> The following was automatically added to this message by the list
>>> server:
>>>
>>> To learn more about Micronet, including how to subscribe to or
>>> unsubscribe from its mailing list and how to find out about upcoming
>>> meetings, please visit the Micronet Web site:
>>>
>>> http://micronet.berkeley.edu
>>>
>>> Messages you send to this mailing list are public and world-
>>> viewable, and the list's archives can be browsed and searched on the
>>> Internet.  This means these messages can be viewed by (among others)
>>> your bosses, prospective employers, and people who have known you in
>>> the past.
>>
>> ***********************************************
>> Beth Muramoto
>> Computer Resource Specialist
>> Graduate School of Education
>> University of California, Berkeley
>> 1650 Tolman Hall
>> Berkeley, CA 94720
>> Email:  mailto:[hidden email]
>> Phone:  (510) 643-0203
>> Fax:  (510) 643-6239
>>
>> The Formula for Success:  Underpromise, overdeliver
>>
>> - Tom Peters
>>
>> ***********************************************
>>
>>
>>
>>
>>
>> -------------------------------------------------------------------------
>> The following was automatically added to this message by the list  
>> server:
>>
>> To learn more about Micronet, including how to subscribe to or  
>> unsubscribe from its mailing list and how to find out about  
>> upcoming meetings, please visit the Micronet Web site:
>>
>> http://micronet.berkeley.edu
>>
>> Messages you send to this mailing list are public and world-
>> viewable, and the list's archives can be browsed and searched on  
>> the Internet.  This means these messages can be viewed by (among  
>> others) your bosses, prospective employers, and people who have  
>> known you in the past.
>
> --
> John Kim
> System and Network Security
> http://security.berkeley.edu

***********************************************
Beth Muramoto
Computer Resource Specialist
Graduate School of Education
University of California, Berkeley
1650 Tolman Hall
Berkeley, CA 94720
Email:  mailto:[hidden email]
Phone:  (510) 643-0203
Fax:  (510) 643-6239

The Formula for Success:  Underpromise, overdeliver

                                - Tom Peters

***********************************************




 
-------------------------------------------------------------------------
The following was automatically added to this message by the list server:

To learn more about Micronet, including how to subscribe to or unsubscribe from its mailing list and how to find out about upcoming meetings, please visit the Micronet Web site:

http://micronet.berkeley.edu

Messages you send to this mailing list are public and world-viewable, and the list's archives can be browsed and searched on the Internet.  This means these messages can be viewed by (among others) your bosses, prospective employers, and people who have known you in the past.
Reply | Threaded
Open this post in threaded view
|

Re: [Micronet] New and Improved SNS security alerts for DHCP hosts

Lucy Greco-2
In reply to this post by Dedra Chamberlin
I would only enjoy if my users are secure and I don't get the alerts. Getting one is always  time for concern.

Lucy Greco
Assistive Technology Specialist
Disabled Student's Program UC Berkeley
(510) 643-7591
http://attlc.berkeley.edu 
http://webaccess.berkeley.edu


-----Original Message-----
From: [hidden email] [mailto:[hidden email]] On Behalf Of Dedra Chamberlin
Sent: Wednesday, September 01, 2010 2:53 PM
To: [hidden email]
Subject: [Micronet] New and Improved SNS security alerts for DHCP hosts

Hello Micronet,

Beginning today, you will notice new and improved content for System and
Network Security alerts related to devices using the campus DHCP service.

Security alerts for vulnerable, potentially compromised, and compromised
DHCP hosts will now be sent to both the registered security contact
mailing list *and* the person who registered the device for the campus
DHCP service (previous alerts were sent only to the security contact).

You can see sample content for these new alerts, which was reviewed and
updated at our recent Security Operations Workgroup meeting, at the link
below:

https://wikihub.berkeley.edu/display/sns/DHCP+communication

Information about the Security Operations Workgroup, including
information for how to join this open forum, is available here:

https://wikihub.berkeley.edu/display/sns/Security+Operations+Workgroup

Enjoy your new security alerts!

- Dedra
------------------------------------------------------------------
Dedra Chamberlin, Manager
CalNet - Identity and Access Management
SNS - System and Network Security

 
-------------------------------------------------------------------------
The following was automatically added to this message by the list server:

To learn more about Micronet, including how to subscribe to or unsubscribe from its mailing list and how to find out about upcoming meetings, please visit the Micronet Web site:

http://micronet.berkeley.edu

Messages you send to this mailing list are public and world-viewable, and the list's archives can be browsed and searched on the Internet.  This means these messages can be viewed by (among others) your bosses, prospective employers, and people who have known you in the past.

 
-------------------------------------------------------------------------
The following was automatically added to this message by the list server:

To learn more about Micronet, including how to subscribe to or unsubscribe from its mailing list and how to find out about upcoming meetings, please visit the Micronet Web site:

http://micronet.berkeley.edu

Messages you send to this mailing list are public and world-viewable, and the list's archives can be browsed and searched on the Internet.  This means these messages can be viewed by (among others) your bosses, prospective employers, and people who have known you in the past.