A detailed report used to send all the details about an
intrusion. This report not only warns about an intruder on
your system but lists any system(s) the hacker was known
to come from or go to, how the intruder gained access to
your system(s), what the intruder was doing on your system(s),
and any log information or other evidence to backup your
claims.
A checklist you can use to track what dates you performed
the various steps of the hacker cleanup. You can use this
checklist to track your progress and so that you do not forget
any important steps.
A simple note you can use to notify your security contact
and security@eng.ufl.edu about
detected scans which may indicate a hacker trying to gain
unauthorized access to your system(s).
A simple note that you can use to notify the domain the
spam came from of an attempted / successfull spam relay.
Most ISPs have user agreements which prevent use of their
network for spamming (sending unsolicitated email).
NOTE: it is not necessary to check for and send
notices about spam relays... especially if you configuration
disallows relaying by default. As a good net-citizen
I have sent many notes about relays and drafted this
to speed up the process. Generally you get back generic
replies about handling the case according the ISPs
EUAL (end user license agreement).
Phone:
(352) 392-6000
Fax: (352) 392-9673
College of Engineering
300 Weil Hall, PO Box 116550
Gainesville, FL 32611-6550
