RE: Start watching your logfiles folks!

[bparis () sorrlac com]

> Michael Kelly wrote:
> >  Remember when politicians would make promises like "A 
> chicken in every
> > pot"?
> > This one is promising to make our lives more interesting.
> >  I'll let you know if he gets through my PIX.
> >
> > http://news.excite.com/news/r/991219/18/russia-election-zhirinovsky
>
> If you need a place to log attacks that take place over Y2K, see:
>
> http://www.sans.org/newlook/resources/flashadv.htm
>
> Cheers,
> Chris
> -- 
> **************************************
> cbrenton () sover net

No need to reinvent the wheel as there is already a Securityfocus "Incident"
mailing list for this specific purpose. See below...

Bill Paris
---------------
INCIDENTS

Traditionally people affected by a security incidents were faced with
limited choices for reporting these happenings. Typical choices were    
possibly reporting to a local incident handling team (if any existed), 
CERT, law enforcement or random mailing lists which did not specifically
deal with incident reporting. Time has shown such choices fail to       
communicate this important information in a timely fashion to others that
may be potentially affected.

The INCIDENTS mailing list is a lightly moderated mailing list to
facilitate the quick exchange of security incident information.

Topical items include:

  o Information about rootkits and backdoors
  o New trojan horses, viruses and worms
  o Sources of attacks
  o Tell-tale signs of intrusions

Please abstain from posting information about new vulnerabilities.
Such information should be sent to the BUGTRAQ mailing list.

For questions or comments, please mail me:

                              Elias Levy
                        aleph1 () securityfocus com