On 3/18/2012 10:18 PM, Cameron Beere wrote:
Good afternoon Lopsa,
The recent announcement of the RDP remote code execution vulnerability
by Microsoft has got me thinking; how does everyone stay on top of
security issues like this which may need to be addressed outside of a
regular patch cycle?
Personally I subscribe to a few mailing lists like Bugtraq, and comb
tech oriented sites like Hacker News, but I'm sure that valuable
information is still slipping through. Is there a better way to do it?
Are there any mailing lists/websites/sourceswhich cover the whole gamut
of tech that we might use, or paid services which can provide this
information across multiple vendors? Are there even any vendor specific
mailing lists which you consider an authoritative source for information
like this?
It's been some number of years since I *had* to pay attention (I'm
retired, now), but I used to find Daily Dave quite useful.
http://lists.immunitysec.com/mailman/listinfo/dailydave
NMap is a good starting point (they archive many of the best mailing lists).
http://nmap.org/
I'm just now getting conscious, but may return to this later, with more
information on other areas you might monitor. Kurt Seifried used to
offer a mailing list that was a useful roll up of all the others (Full
Disclosure is such a noisy cesspool, and always was), but that stopped,
years ago.
http://www.seifried.org/security/ (Please note this link is only for
consistency; the page hasn't been updated for YEARS.)
--
It isn't just me.
http://blogs.msdn.com/b/jw_on_tech/archive/2012/03/13/why-i-left-google.aspx
_______________________________________________
Discuss mailing list
[email protected]
https://lists.lopsa.org/cgi-bin/mailman/listinfo/discuss
This list provided by the League of Professional System Administrators
http://lopsa.org/
