Skip to site navigation

UCL Computer Security Newsletter - November/December 2009

The purpose of this newsletter is to keep all security reps and other interested parties informed about what is happening around UCL regarding computer security.  Further information from the Computer Security Team is always available at http://www.ucl.ac.uk/cert.

1.  Thank you

Thank you to all who replied re: security spend.  No more submissions are needed as some extrapolation was done.

2.  JISC Legal

JISC Legal have a regular monthly newsletter - details at
http://www.jisclegal.ac.uk/Newsletter.aspx

3.  Patching

We would like to remind and encourage all to have adequate patching regimes in place for all machines.

4.  F-Secure Policy manager

Those of you who have tried deploying F-Secure 9 Policy Manager will have found that it asks for your customer number.  It is on the F-secure webpage
https://www.ucl.ac.uk/fsecure/FSecure.html#pm9

Thanks to Bob Muid for this.

5.  Conflicker

JANET CSIRT have produced some information on this at http://www.ja.net/services/csirt/technical-advice/conficker/ - specifically they mention the disabling of autorun.  This is good practice in any case and worth doing.

6.  General

Please note all correspondence from the UCL Computer Security Team is digitally signed either with personal PGP keys or the CERT team key (public keys available from http://www.ucl.ac.uk/cert/contacts.html).

This newsletter and previous ones are available at http://www.ucl.ac.uk/cert/cst-newsletters/index.html (except currently the March 2007 one as that had sensitive information in it).

We welcome feedback on the content and organisation of documents on our web page.