: skip to content : Home : Uni : Students : Research : Community : News : Events
150 years of Achievement: image of university student
Faculties : A-Z Directory : Library
  • IT Security Links
    • University IT Security News
-----------

IT Security Update - July 2003


Greetings All

IT SECURITY UPDATE - JUL 03
=============================

1. STAFF WITH IT SECURITY RESPONSIBIILTIES
--------------------------------------------

Staff involved in IT administration and security are encouraged to
subscribe to mailing lists hosted by IT Security agencies. This would be
a valuable source of timely information on IT Security issues.

Suggestions for subscription to newsletters and alerts include those from:
AusCERT: www.auscert.org
SANS Institute: www.sans.org
Internet Security Systems: www.iss.net
and also the vendor whose anti-virus products you use/administer

2. KEEPING WINDOWS WORKSTATIONS AND SERVERS UP-TO-DATE
--------------------------------------------------------

Dr Elliot Gingold has written a document on various methods that can be
used to keep computers using Microsoft Windows up to date.

Particularly relevant is information on how these can be achieved within
the University's network.

The document is available at:
http://www.infodiv.unimelb.edu.au/it-security/windows-up-to-date.html

3. CENTRAL EMAIL ANTI-VIRUS SCANNING
--------------------------------------

The Systems Group in the Information Division has upgraded the email
server software on the primary gateway for the University's email. This
is in preparation for the implementation of the central email anti-virus
scanning service. This service is targetted to be available in July 2003.

4. 2003 AUSTRALIAN COMPUTER CRIME AND SECURITY SURVEY
-------------------------------------------------------

AusCERT has published a report after surveying more than 200 public and
private sector organisations. Yalcin Adal submitted a response on behalf
of the University. Some key findings of the survey are:

- Only 11% of respondents felt they were managing computer security
issues reasonably well

- A high rate of infections were reported, despite the widespread use
of anti-virus software

- Financial fraud; laptop theft; virus, worm and trojan infections are
the largest source of computer crime losses

The report can be accessed at:
http://www.auscert.org.au/render.html?it=2001

5. SOPHOS REVIEW OF VIRUSES FOR THE FIRST HALF OF 2003
--------------------------------------------------------

Sophos has written a review on virus activities and hoaxes based on
information from Sophos's technical support department. The top 10
occurrences of the various viruses and hoaxes are ranked.

The review notes a trend indicating an acceleration in new viruses
being written.

The review can be accessed at:
http://www.sophos.com/pressoffice/pressrel/uk/20030630topten.html

6. VAAG MEETING
-----------------

A meeting of the Vulnerability Assessment and Advice Group was held on
10 Jun 03. The group is proceeding to implement procedures and establish
resources to proactively search for vulnerabilities in computer systems
within members' departments, before the computers are exploited by
attackers. These vulnerability assessments will only be performed after
approval for such activity has been granted.

LITEs and LANADs are welcome to join the group.


=============
END OF UPDATE
=============

 

top of page

Contact Us : Disclaimer & Copyright : Privacy