Solved

Active mailing lists / forums for IT security vulnerabilities discussion

Posted on 2014-01-12
3
393 Views
Last Modified: 2014-01-17
I often need to assess vulnerabilities relating to
a) OS (Windows, Redhat Linux & a bit of Solaris x86) &
b) MS Products (Sharepoint, IIS, clustering, .Net Framework, HL7, SQL etc),
c) VMWare products (cloud environment, ESXi, vCenter, vCloud  Director, vShield etc) &

their relevance/risk level/applicability & the patches/fixes/workarounds needed
in our cloud.  I have to complete the assessments within 3-6 hours.

What are some of the active mailing lists & forums that cover
these topics  that I can raise clarifications & get good & fast
responses?  

Pls indicate those where the responses are publicly viewable & those
that are not.

I may raise clarifications relating to malicious Content issues (iVPN-1
NGX R62),  cross-site scripting, Tipping Point IPS/IDS scanning/
signatures, antivirus (TrendMicro that does deep scans) & various
PenTests / scanning.
0
Comment
Question by:sunhux
3 Comments
 

Author Comment

by:sunhux
ID: 39776408
including DOS, DDOS/Botnet, application blacklisting/greylisting, SYN flooding,
Trojan as well
0
 
LVL 90

Assisted Solution

by:John Hurst
John Hurst earned 150 total points
ID: 39777621
One large security forum is governmentsecurity.org.   Go to the site below:

http://www.governmentsecurity.org/forum/

Also, go to ZDNet and sign up for a selection of newsletters. They often cover security issues and keeps readers apprised of security patches coming up.

Less so, but still valuable is Information Week Daily.

.... Thinkpads_User
0
 
LVL 38

Accepted Solution

by:
Rich Rumble earned 350 total points
ID: 39777666
Seclists http://seclists.org/
exploit-db.com http://www.exploit-db.com/
https://isc.sans.edu/diary.html
http://secunia.com/resources/reports/

These are most of the resources I check daily or have a subscription to. Slashdot, ArsTechnica and many AV blogs are useful as well
http://nakedsecurity.sophos.com/
http://krebsonsecurity.com/
http://www.wired.com/threatlevel/
http://www.darkreading.com/
http://arstechnica.com/
-rich
0

Featured Post

Free camera licenses with purchase of My Cloud NAS

Milestone Arcus software is compatible with thousands of industry-leading cameras for added flexibility. Upon installation on your My Cloud NAS, you will receive two (2) camera licenses already enabled in the software. And for a limited time, get additional camera licenses FREE.

Join & Write a Comment

SHARE your personal details only on a NEED to basis. Take CHARGE and SECURE your IDENTITY. How do I then PROTECT myself and stay in charge of my own Personal details (and) - MY own WAY...
OfficeMate Freezes on login or does not load after login credentials are input.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
When you create an app prototype with Adobe XD, you can insert system screens -- sharing or Control Center, for example -- with just a few clicks. This video shows you how. You can take the full course on Experts Exchange at http://bit.ly/XDcourse.

757 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

27 Experts available now in Live!

Get 1:1 Help Now