Re: Membership in REN-ISAC?

[Russell Fulton <r.fulton () AUCKLAND AC NZ>]

Chiming in late -- it is summer holiday time down here :)

On 5/01/2010, at 7:57 AM, Vik Solem wrote:

> My apologies.  After checking with affected people, I'm told that the  
> current method for REN-ISAC membership is substantially different than  
> the previous method under which folks I knew were refused.  I should  
> probably have mentioned before that I've been a member for close to a  
> year, and I've found the REN-ISAC data to be substantially different  
> from the EDUCAUSE data.  I think the limitation on sharing the data  
> encourages different kinds of submissions.

Most definitely.  You will see stuff discussed on RI lists that no sane security professional would post to an open 
list either because:

a/  The information could be potentially damaging to the institution  (we got done an this is what happened...) or
b/  The information would be useful to the black hats ( we have this neat means of tracking ... please help us and run 
a sensor...) or
c/  The information is speculative and we definitely don't want news media getting hold of this...
d/  ..... use your imagination.

Trust is a wonderful commodity and RI has managed to set up a highly trusted group of professions where people do feel 
safe sharing information that they otherwise would not.

Russell.