?
Solved

Active mailing lists / forums for IT security vulnerabilities discussion

Posted on 2014-01-12
3
Medium Priority
?
401 Views
Last Modified: 2014-01-17
I often need to assess vulnerabilities relating to
a) OS (Windows, Redhat Linux & a bit of Solaris x86) &
b) MS Products (Sharepoint, IIS, clustering, .Net Framework, HL7, SQL etc),
c) VMWare products (cloud environment, ESXi, vCenter, vCloud  Director, vShield etc) & 

their relevance/risk level/applicability & the patches/fixes/workarounds needed
in our cloud.  I have to complete the assessments within 3-6 hours.

What are some of the active mailing lists & forums that cover
these topics  that I can raise clarifications & get good & fast
responses?  

Pls indicate those where the responses are publicly viewable & those
that are not.

I may raise clarifications relating to malicious Content issues (iVPN-1
NGX R62),  cross-site scripting, Tipping Point IPS/IDS scanning/
signatures, antivirus (TrendMicro that does deep scans) & various
PenTests / scanning.
0
Comment
Question by:sunhux
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 

Author Comment

by:sunhux
ID: 39776408
including DOS, DDOS/Botnet, application blacklisting/greylisting, SYN flooding,
Trojan as well
0
 
LVL 97

Assisted Solution

by:Experienced Member
Experienced Member earned 600 total points
ID: 39777621
One large security forum is governmentsecurity.org.   Go to the site below:

http://www.governmentsecurity.org/forum/

Also, go to ZDNet and sign up for a selection of newsletters. They often cover security issues and keeps readers apprised of security patches coming up.

Less so, but still valuable is Information Week Daily.

.... Thinkpads_User
0
 
LVL 38

Accepted Solution

by:
Rich Rumble earned 1400 total points
ID: 39777666
Seclists http://seclists.org/
exploit-db.com http://www.exploit-db.com/
https://isc.sans.edu/diary.html
http://secunia.com/resources/reports/

These are most of the resources I check daily or have a subscription to. Slashdot, ArsTechnica and many AV blogs are useful as well
http://nakedsecurity.sophos.com/
http://krebsonsecurity.com/
http://www.wired.com/threatlevel/
http://www.darkreading.com/
http://arstechnica.com/
-rich
0

Featured Post

Put Machine Learning to Work--Protect Your Clients

Machine learning means Smarter Cybersecurity™ Solutions.
As technology continues to advance, managing and analyzing massive data sets just can’t be accomplished by humans alone. It requires huge amounts of memory and storage, as well as high-speed processing of the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Article by: Justin
In light of the WannaCry ransomware attack that affected millions of Windows machines, you might wonder if your Mac needs protecting. Yes, it does and here is how to do it.
Make the most of your online learning experience.
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question