[nsp-sec] Changes Coming

Dave Monnier dmonnier at cymru.com
Thu Feb 14 11:09:04 EST 2013 

Thank you for your note, William.  I'd like to clarify a few things.

First, the Daily Reports project is not related to the NSP-Sec list,
personally vetted communities, or anything else.  It was made available
to the list members here on NSP-Sec but was not tied to the list
otherwise. Please don't consider this change to have anything to do with
the list.

Second. CSIRT teams like the REN-ISAC are not recipients of the Daily
Reports program.  Their partnership with Team Cymru is related to
individual programs we have or to another larger program we run called
our CSIRT Assistance Program.  In either case, those programs have
nothing connected to the NSP-Sec community.

There's nothing preventing the third parties you've been helping to
subscribe to TC Console themselves.  While it's great that you've been
helping them we would prefer to know who's receiving the data we
provide.  That information helps us to understand the scope our impact
and to better determine where we need to focus additional efforts.

Thanks,
-Dave


On 2/14/13 10:40 AM, William Allen Simpson wrote:
> On 2/14/13 8:19 AM, Dave Monnier wrote:
>> 2. You must have verifiable authority for the ASN or prefixes you're
>> requesting.  If you've been pulling data fro networks that are not your
>> responsibility as a favor, etc, our apologies. We would welcome these
>> parties to the new system as well.
>>
> This is really too bad.  In fact, the only data I've received for *years*
> is for 3rd parties (current and former upstreams, peers, etc).  We've
> almost always been squeaky clean ourselves, as I've made it a priority.
> 
> As for signing them up, that's highly unlikely.  We're all so small that
> we don't really qualify for NSP-Sec alone.  Heck, I probably wouldn't
> qualify on my own anymore -- I'm largely here because I was one of the
> founding members and keep my hand in operations from time to time.
> 
> Therefore, I've personally extracted the daily data by hand and handed it
> off without nsp-sec fingerprints to my personal trusted contacts.  One of
> them has been getting their reports from REN-ISAC lately.  But I think
> it's highly unlikely you'll ever get each REN-ISAC member to sign up for
> your new service on their own.
> 
> Good luck.  I'm just very disappointed.  We're really getting away from
> the personally vetted community model.
> 


-- 
Dave Monnier
Team Cymru
https://www.team-cymru.org/
PGP: https://www.cymru.com/dmonnier/0x7C1AAE55_pub.asc


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 203 bytes
Desc: OpenPGP digital signature
URL: <https://puck.nether.net/mailman/private/nsp-security/attachments/20130214/21f2a193/attachment-0001.sig>

More information about the nsp-security mailing list