Threat Level: green Handler on Duty: Rob VandenBrink

SANS ISC InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Oracle Releases Java Security Updates

Published: 2012-08-30
Last Updated: 2012-08-30 18:34:17 UTC
by Scott Fendley (Version: 1)
2 comment(s)

A short while ago, Oracle released updates for both Java 6 and Java 7 in response to the critical 0-Day vulnerabilities discussed earlier this week, as well as two other security issues.

US-CERT has reported that applying Java 7 update 7 will solve the security issues as discussed at http://www.kb.cert.org/vuls/id/636312

More information is available at http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html

Scott Fendley ISC Handler

Keywords:
2 comment(s)
Editorial: The Slumlord Approach to Network Security http://isc.sans.edu/j/editorial

Analyzing outgoing network traffic (part 2)

Published: 2012-08-30
Last Updated: 2012-08-30 11:42:11 UTC
by Bojan Zdrnja (Version: 1)
5 comment(s)

Last week I posted a diary about analyzing outgoing network traffic and asked our readers to comment what data sources they use when monitoring outbound connections our users establish.

Besides the sources I listed in the original diary we got quite a few comments and some good questions, so I’m combining all these in this, second, diary:

These include the lists I verified in the mean time – for more check comments in the first diary.

One of our readers, Arnim, also asked about a potentially very useful list of IP addresses belonging to remote access services such as LogMeIn, NetViewer and similar. I’m not aware of such a list but it would be very useful. Emerging Threat’s has something similar – a list of outgoing ToR nodes but that only helps you figure out if someone that visited your network used ToR. The list is available at http://rules.emergingthreats.net/open/suricata/rules/tor.rules

Thanks to everyone that submitted their comments, including Christian, Ben, Arnim, Hal, Matt, Brent and many others.

 

--
Bojan
INFIGO IS

 

5 comment(s)
ISC StormCast for Thursday, August 30th 2012 http://isc.sans.edu/podcastdetail.html?id=2770
Diary Archives