Educause Security Discussion mailing list archives

Re: Compromised Server Policy

From: Joel Rosenblatt <joel () COLUMBIA EDU>
Date: Mon, 16 May 2005 12:55:27 -0400

Hi,

Our policy is pretty much Nuke and Pave ... for individuals and servers.  We make exceptions if we have to - but most 
of those (exceptions) turn back into
compromised machines :-)

Joel Rosenblatt

Joel Rosenblatt, Senior Security Officer & Windows Specialist, AcIS
Columbia University, 612 W 115th Street, NY, NY 10025 / 212 854 3033
http://www.columbia.edu/~joel


--On Monday, May 16, 2005 12:52 PM -0400 "Jon E. Mitchiner" <jon.mitchiner () GALLAUDET EDU> wrote:

I am developing procedures when a server has been compromised.  Instead
of re-inventing the wheel again, I would like to solict procedures from
other people on the list.

Thanks in advance!

Jon

--
Jon E. Mitchiner
Special Projects Manager
ITS, Gallaudet University
(202) 651-5300
(202) 651-5477 (Fax)

**********
Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at 
http://www.educause.edu/groups/.


**********
Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at 
http://www.educause.edu/groups/.

Current thread:

Compromised Server Policy Jon E. Mitchiner (May 16)
- <Possible follow-ups>
- Re: Compromised Server Policy Joel Rosenblatt (May 16)
- Re: Compromised Server Policy Penn, Blake (May 16)
- Re: Compromised Server Policy Buz Dale (May 16)
- Re: Compromised Server Policy Joel Rosenblatt (May 16)
- Re: Compromised Server Policy Chad McDonald (May 16)
- Re: Compromised Server Policy Greg Jackson (May 16)