UCL Computer Security Newsletter - November/December 2009
The purpose of this newsletter is to keep all security reps and other
interested parties informed about what is happening around UCL
regarding computer security. Further information from the Computer
Security Team is always available at http://www.ucl.ac.uk/cert.
1. Thank you
Thank you to all who replied re: security spend. No more submissions are needed as some extrapolation was done.
2. JISC Legal
JISC Legal have a regular monthly newsletter - details at
We would like to remind and encourage all to have adequate patching regimes in place for all machines.
4. F-Secure Policy manager
Those of you who have tried deploying F-Secure 9 Policy Manager will have found that it asks for your customer number. It is on the F-secure webpage
Thanks to Bob Muid for this.
JANET CSIRT have produced some information on this at http://www.ja.net/services/csirt/technical-advice/conficker/ - specifically they mention the disabling of autorun. This is good practice in any case and worth doing.
Please note all correspondence from the UCL Computer Security Team is digitally signed either with personal PGP keys or the CERT team key (public keys available from http://www.ucl.ac.uk/cert/contacts.html).
This newsletter and previous ones are available at http://www.ucl.ac.uk/cert/cst-newsletters/index.html (except currently the March 2007 one as that had sensitive information in it).
We welcome feedback on the content and organisation of documents on our web page.