![]() ![]() NSP-SEC members should have the span of control to take action on the information from an NSP-SEC correspondence without widely posting the information inside their organization. Therefore, reposting NSP-SEC communications to individuals inside or outside your organization is a violation of that trust. This is encouraged and discussions of this nature are expected to move from NSP-SEC to NSP-SEC-DISCUSS. It is natural on-line human behavior to digress into a dialog. NSP-SECs consultation on procedures, policies, tools, mitigation techniques, and other proactive activities take place on the discussion alias NSP-SEC-DISCUSS. It is a violation of trust to the community. Taking information provided on the NSP-SEC forums and using it for commercial gain is not allowed. Recognizing specific national laws, regulations, and/or corporate policies may prevent some members from posting on the public NSP-SEC alias these limitations do not prevent private mitigation correspondence. Acknowledgements of action whether publicly on the mailing list or privately to the people involved provides members of the community an indication that contributions are being made. Silence often indicates that people are not handling the information provided by the NSP-SEC community or that the information provided is of little relevence to the member. Lurking and learning does not contribute to the community there are other forums for that. Ěll posts to NSP-SEC must have an organizational affiliation via either a corporate email address that is identifable as an ISP/NSP, or via a signature that includes your organizational affiliation or ASN. These expectations, which have evolved through active membership feedback include: These expectations are periodically reviewed by the NSP-SEC moderators to ensure that an individuals community membership is relevant, productive, and adds value to the mission of NSP-SEC. As such, realistic expectations are placed on the NSP-SEC membership. NSP-SEC is a forum to get work done in the service of the community. If yes, then you might fit the expectations to be on the NSP-SEC Mitigation or Discussion Forums. ĝo you have the time for a real-time NSP mitigation forum? ĝo you have authorization to actively mitigate incidents in your network? Do you actually log into a router and do something to mitigate an attack or call someone to task them to do the work? Ěre you willing to offer free services, data, forensic, and other monitoring data to the NSP community? ĝoes your job include Operational Security? ĝo you work for some type of IP transit provider, huge multi-homed content provider, or service provider? Some common questions to ask yourself are: Step one is to insure you meet the qualifications for NSP-SEC. The list has helped mitigate attacks and will continue to do so. The nsp-security forum is a volunteer incident response mailing list, which coordinates the interaction between ISPs and NSPs in near real-time and tracks exploits and compromised systems as well as mitigates the effects of those exploits on ISP networks. "Cyber defenders, ever vigilant, ever responsive." -Marjorie Gilbert, 2003
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |