Sponsored Links

Security and Admin - lessons learned??

Really boring topic I know but some of us ex-c9 people might have an interest!

I would like to know however that procedures are in place JUST IN CASE we get more DDoS or similar criminal activity. I know that technical security measures must remain confidential, and to a large extent be taken on trust, until the cookie crumbles that is!

DOES ZN have:

a) contact details for us all, e-mail, telephone, and postal address? Are these details also stored off-site in case off problems?

b) notices (or home) page hosted by another ISP on a different network? If not I suggest you arrange one, its one of the many good suggestions to come out of the C9 forums! Let us know the address.

c) a designated DR comms person whose role is to communicate with customers? Doesn’t have to do ONLY that, it just needs to be their primary role. At the start of a crisis the comms need to be frequent, as other DR measures kick in they just need to be regular. NEVER miss a deadline without updating customers.

d) mutual support arrangements with another ISP or even two? This should specifically cover temporary transfer of hosting (even if just a single page! It just needs to point/re-direct to a customers back-up site) and e-mail PLUS domain names/DNS.

e) ability to frequently scan customers’ equipment for security issues AND the procedures in place to inform, warn and, if necessary, disconnect problem equipment/users? How about a web page offering advice, information and links to relevant sites/services? It could even provide an extra, low cost, income stream if you approach it right!

I understand that d) is commercially difficult. HOWEVER the criminal fraternity/script kiddies have just had a victory and could well move on, picking off targets one by one. If any other than the largest ISPs are to survive this is the type of arrangement that is needed. Its no good thinking you can cope - defensive measures always lag at least one step behind offensive.

Enough rambling from me :) These are just the basics really - I’m sure other ex-c9ers will have additional things to add :)

AndyB

P.S. isnt hindsight wonderful!

[ 25-01-2002: Message edited by: AndyB ]</p>
 
Originally posted by AndyB:
<strong>e) ability to frequently scan customers equipment for security issues AND the procedures in place to inform, warn and, if necessary, disconnect problem equipment/users</strong><hr></blockquote>

All seem like good suggestions, but I'd just like to point out that in one of their final postings C9 stated that they'd done this and found ~80% of people connected with all ports open. They didn't say what action they'd taken at that stage but later, during the DoS, they did suspend the accounts of the 20-30 unwitting participants on their books.

Warning people about security problems is fine, provided the means to correct the problems are also recommended (Zonealarm, free AV software, disabling XP's remote control facility etc..). It'd be good general advice for any ISP but I guess the main reason it doesn't happen is commercial self-interest.
 
Sponsored Links
Top
Cheap BIG ISPs for 100Mbps+
Community Fibre UK ISP Logo
150Mbps
Gift: None
Virgin Media UK ISP Logo
Virgin Media £24.00
132Mbps
Gift: None
Shell Energy UK ISP Logo
Shell Energy £26.99
109Mbps
Gift: None
Plusnet UK ISP Logo
Plusnet £27.99
145Mbps
Gift: None
Zen Internet UK ISP Logo
Zen Internet £28.00 - 35.00
100Mbps
Gift: None
Large Availability | View All
Cheapest ISPs for 100Mbps+
Gigaclear UK ISP Logo
Gigaclear £15.00
150Mbps
Gift: None
YouFibre UK ISP Logo
YouFibre £19.99
150Mbps
Gift: None
Community Fibre UK ISP Logo
150Mbps
Gift: None
BeFibre UK ISP Logo
BeFibre £21.00
150Mbps
Gift: £25 Love2Shop Card
Hey! Broadband UK ISP Logo
150Mbps
Gift: None
Large Availability | View All

Helpful ISP Guides and Tips

Sponsored Links
The Top 15 Category Tags
  1. FTTP (5473)
  2. BT (3505)
  3. Politics (2525)
  4. Openreach (2291)
  5. Business (2251)
  6. Building Digital UK (2234)
  7. FTTC (2041)
  8. Mobile Broadband (1961)
  9. Statistics (1780)
  10. 4G (1654)
  11. Virgin Media (1608)
  12. Ofcom Regulation (1451)
  13. Fibre Optic (1392)
  14. Wireless Internet (1386)
  15. FTTH (1381)
Sponsored

Copyright © 1999 to Present - ISPreview.co.uk - All Rights Reserved - Terms  ,  Privacy and Cookie Policy  ,  Links  ,  Website Rules