Educause Security Discussion mailing list archives
Re: Botnet Detection
From: Jay Tumas <jay_tumas () HARVARD EDU>
Date: Wed, 22 Aug 2007 20:28:42 -0400
We're using FireEye and some custom snort sigs on our border.
J
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Jay Tumas - BSEE, NSA/IAM&IEM
~~~~~~~~~~~~~~~~~~~~
- Network Operations, Security and Incident Response Team Manager
- Longwood Medical Area Technical Subcommittee Chair
- Boston Infragard Members Alliance, Executive Board Member
~~~~~~~~~~~~~~~~~~~~
Harvard University - UIS/Network Operations Center
60 Oxford Street, Suite 132
Cambridge, MA. 02138
~~~~~~~~~~~~~~~~~~~~
Office: 617-496-8500 Mobile Device: 617-733-6169
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
"The first method for estimating the intelligence of a ruler is
to look at the men he has around him." - Niccolo Machiavelli
Jones, Jim R wrote:
Does anyone have a utility or method of detecting botnet infections? This is becoming a serious problem that we have no way of tracking down at this point in time. Any suggestions are appreciated! Jim Jones IT Security Manager Gonzaga University 509.323.5926
Current thread:
- Botnet Detection Jones, Jim R (Aug 22)
- <Possible follow-ups>
- Re: Botnet Detection Donna michaels (Aug 22)
- Re: Botnet Detection Jones, Jim R (Aug 22)
- Re: Botnet Detection Clark, Joseph K (Aug 22)
- Re: Botnet Detection Jones, Jim R (Aug 22)
- Re: Botnet Detection Stephen Gill (Aug 22)
- Re: Botnet Detection Jay Tumas (Aug 22)
- Re: Botnet Detection John C. A. Bambenek, CISSP (Aug 22)
- Re: Botnet Detection David Taylor (Aug 23)
- Re: Botnet Detection Wayne J. Hauber (Aug 23)
- Re: Botnet Detection Joseph Karam (Aug 23)
- Re: Botnet Detection Curt Wilson (Aug 24)
- Re: Botnet Detection Joe St Sauver (Aug 24)