AndyB
0
Really boring topic I know but some of us ex-c9 people might have an interest!
I would like to know however that procedures are in place JUST IN CASE we get more DDoS or similar criminal activity. I know that technical security measures must remain confidential, and to a large extent be taken on trust, until the cookie crumbles that is!
DOES ZN have:
a) contact details for us all, e-mail, telephone, and postal address? Are these details also stored off-site in case off problems?
b) notices (or home) page hosted by another ISP on a different network? If not I suggest you arrange one, its one of the many good suggestions to come out of the C9 forums! Let us know the address.
c) a designated DR comms person whose role is to communicate with customers? Doesn’t have to do ONLY that, it just needs to be their primary role. At the start of a crisis the comms need to be frequent, as other DR measures kick in they just need to be regular. NEVER miss a deadline without updating customers.
d) mutual support arrangements with another ISP or even two? This should specifically cover temporary transfer of hosting (even if just a single page! It just needs to point/re-direct to a customers back-up site) and e-mail PLUS domain names/DNS.
e) ability to frequently scan customers’ equipment for security issues AND the procedures in place to inform, warn and, if necessary, disconnect problem equipment/users? How about a web page offering advice, information and links to relevant sites/services? It could even provide an extra, low cost, income stream if you approach it right!
I understand that d) is commercially difficult. HOWEVER the criminal fraternity/script kiddies have just had a victory and could well move on, picking off targets one by one. If any other than the largest ISPs are to survive this is the type of arrangement that is needed. Its no good thinking you can cope - defensive measures always lag at least one step behind offensive.
Enough rambling from me These are just the basics really - I’m sure other ex-c9ers will have additional things to add
AndyB
P.S. isnt hindsight wonderful!
[ 25-01-2002: Message edited by: AndyB ]</p>
I would like to know however that procedures are in place JUST IN CASE we get more DDoS or similar criminal activity. I know that technical security measures must remain confidential, and to a large extent be taken on trust, until the cookie crumbles that is!
DOES ZN have:
a) contact details for us all, e-mail, telephone, and postal address? Are these details also stored off-site in case off problems?
b) notices (or home) page hosted by another ISP on a different network? If not I suggest you arrange one, its one of the many good suggestions to come out of the C9 forums! Let us know the address.
c) a designated DR comms person whose role is to communicate with customers? Doesn’t have to do ONLY that, it just needs to be their primary role. At the start of a crisis the comms need to be frequent, as other DR measures kick in they just need to be regular. NEVER miss a deadline without updating customers.
d) mutual support arrangements with another ISP or even two? This should specifically cover temporary transfer of hosting (even if just a single page! It just needs to point/re-direct to a customers back-up site) and e-mail PLUS domain names/DNS.
e) ability to frequently scan customers’ equipment for security issues AND the procedures in place to inform, warn and, if necessary, disconnect problem equipment/users? How about a web page offering advice, information and links to relevant sites/services? It could even provide an extra, low cost, income stream if you approach it right!
I understand that d) is commercially difficult. HOWEVER the criminal fraternity/script kiddies have just had a victory and could well move on, picking off targets one by one. If any other than the largest ISPs are to survive this is the type of arrangement that is needed. Its no good thinking you can cope - defensive measures always lag at least one step behind offensive.
Enough rambling from me These are just the basics really - I’m sure other ex-c9ers will have additional things to add
AndyB
P.S. isnt hindsight wonderful!
[ 25-01-2002: Message edited by: AndyB ]</p>