Threat Level: green Handler on Duty: Rob VandenBrink

SANS ISC InfoSec Handlers Diary Blog

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Oracle Releases Java Security Updates

Published: 2012-08-30
Last Updated: 2012-08-30 18:34:17 UTC
by Scott Fendley (Version: 1)
2 comment(s)

A short while ago, Oracle released updates for both Java 6 and Java 7 in response to the critical 0-Day vulnerabilities discussed earlier this week, as well as two other security issues.

US-CERT has reported that applying Java 7 update 7 will solve the security issues as discussed at

More information is available at

Scott Fendley ISC Handler

2 comment(s)
Editorial: The Slumlord Approach to Network Security

Analyzing outgoing network traffic (part 2)

Published: 2012-08-30
Last Updated: 2012-08-30 11:42:11 UTC
by Bojan Zdrnja (Version: 1)
5 comment(s)

Last week I posted a diary about analyzing outgoing network traffic and asked our readers to comment what data sources they use when monitoring outbound connections our users establish.

Besides the sources I listed in the original diary we got quite a few comments and some good questions, so I’m combining all these in this, second, diary:

These include the lists I verified in the mean time – for more check comments in the first diary.

One of our readers, Arnim, also asked about a potentially very useful list of IP addresses belonging to remote access services such as LogMeIn, NetViewer and similar. I’m not aware of such a list but it would be very useful. Emerging Threat’s has something similar – a list of outgoing ToR nodes but that only helps you figure out if someone that visited your network used ToR. The list is available at

Thanks to everyone that submitted their comments, including Christian, Ben, Arnim, Hal, Matt, Brent and many others.




5 comment(s)
ISC StormCast for Thursday, August 30th 2012
Diary Archives