AusCERT - Australia's National Computer Emergency Response Team

copyright | disclaimer | privacy | contact

HOME

About AusCERT

Membership

Contact Us

Report Incident

Training

Publications

Sec. Bulletins

Conferences

Certifications

News & Media

Services

National Home

Web Log

Site Map

Site Help

Member login



		AusCERT is the national Computer Emergency Response Team (CERT) for Australia and a leading CERT in the Asia/Pacific region. As the national CERT, we are the primary Australian contact for dealing with Internet security threats and vulnerabilities affecting Australian interests. We operate within a worldwide network of information security experts and provide computer incident prevention, response and mitigation strategies for members and assistance to affected parties in Australia. We operate the Australian government funded Stay Smart Online Alert Service, which is a part of the broader Stay Smart Online government initiative.



		AA-2009.0155 -- [Win] -- Google Chrome: Execute Arbitrary Code - A buffer overflow vulnerability has been reported in Google Chrome. (26/06/2009) ESB-2009.0616 -- [Win][UNIX/Linux][Ubuntu] -- OpenSSL: Denial of Service - (26/06/2009) AA-2009.0147 -- [Win][UNIX/Linux] -- SquirrelMail web server compromise - The SquirrelMail web server was discovered to be compromised at 17:00 GMT on the 16th of June 2009. (23/06/2009) AL-2009.0051 -- [Win][UNIX/Linux] -- Firefox, Seamonkey and Thunderbird: Multiple Vulnerabilities - Mozilla has released nine advisories relating to Firefox, Thunderbird and Seamonkey. (12/06/2009) ESB-2009.0541-- [Win][Mac][OSX] -- Safari: Multiple Vulnerabilities - (11/06/2009) More.. denotes AusCERT member only content.



		Grab the new Firefox! - Firefox 3.5 released. (03/07/2009) New bulletin format now in action - The new AusCERT bulletin format is now being used. (01/07/2009) Dead computers and some vulnerabilities - I hope the week has been better to your computer systems as it has been to the ones at AusCERT. We have had 3 laptops and 1 desktop "die". Some because of hardware, and some (thankfully) only software. (26/06/2009) More..



		AusCERT Bulletin Formats - This page describes the formats of AusCERT's two bulletin types - Security Bulletins and External Security Bulletins. (11/06/2009) Australian government announces new national CERT arrangements for Australia on budget night - (19/05/2009) Skeleton DDoS Mitigation Procedure - This is a skeleton procedure for mitigating a DDoS attack. (05/03/2009) OWASP Australia Application Security Conference 2009 - AusCERT supports the efforts of OWASP, who have kindly offered a discount to AusCERT members for the upcoming conference. (23/01/2009) AA-2009.0009 -- [PGP/GPG] -- AusCERT has generated a new PGP/GPG Key to use for signing and having data encrypted to - (22/01/2009)



		Choosing good passwords Choosing a good password is a trade off between something that is difficult to guess versus something that is easy to remember. This article provides some simple rules of thumb on choosing good passwords (and good password policies). Protecting your computer from malicious code This paper provides practical advice for protecting the PC desk top environment from malicious code for home users, SMEs or organisations without dedicated IT staff. Report a computer security incident We are interested in reports about deliberate acts which harm or are intended to harm computer systems or compromise data within those system or which are otherwise illegal, whether directed towards, or emanating from Australian systems. AusCERT UNIX and Linux Security Checklist This document is designed to assist system administrators in organisations of all sizes by providing a concise guide to running UNIX and Linux systems securely. 2006 Australian Computer Crime and Security Survey The survey provides the most up to date and authoritative analysis of computer network attack and computer misuse trends in Australia for 2006. The survey aims to raise awareness of the complex nature of computer security issues, identify areas of concern and, where appropriate, to motivate organisations to take a more active role in protecting their systems.