Threat Level: green Handler on Duty: Tom Webb

SANS ISC: InfoSec Handlers Diary Blog - Internet Storm Center Diary 2007-11-05 InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Top IPv6 Implementation Issues

Published: 2007-11-05
Last Updated: 2007-11-05 16:51:06 UTC
by Johannes Ullrich (Version: 1)
0 comment(s)
Have you implemented IPv6 yet? Are you considering it or testing it right now? I am working on a list of the top IPv6 implementation issues, and would like to hear what problems you ran into. Please use our contact form and mention "IPv6" as part of the subject.

A complete list will be presented at the CDI conference in December and we will post it here after the conference.

-------------
Johannes B. Ullrich, Ph.D.
Chief Research Officer, SANS Technology Institute

Keywords:
0 comment(s)

Cyber Jihad Called Off

Published: 2007-11-05
Last Updated: 2007-11-05 16:02:56 UTC
by Johannes Ullrich (Version: 1)
4 comment(s)
Ok. Not really. But a lot of what you read may just be hype. Over the last couple days, quite a few readers asked us about our opinion regarding the "cyber jihad" that's supposed to start on November 11th. Couple reasons we think this is not going to be an issues:

  • the site calling for it has tried to do so before without success
  • November 11th is also the official start of carnival, at least in germany, and a day for hoaxes
  • Even if something is going to happen, I doubt it will be more then a lame DoS attack
So in short: stay calm, focus on best practices and you don't have to do anything special on November 11th. If your systems are secure, they will be fine. If they are not secure, then they will get hacked no matter if its cyber jihad or the script kiddie from next door.

In the past, political attacks like this resulted in some more or less manual DoS attacks. Expect things like calls for supporters to reload particular "offensive" websites, or use the ping command to flood them. In some cases, supporters may be asked to install trojans. But chances are that the usual criminals will just take advantage of this and use it as a trick to install the regular criminal bots.

-----------
Johannes B. Ullrich, Ph.D.
Chief Research Officer, SANS Technology Institute.

Keywords:
4 comment(s)
Diary Archives