csirt - terena · csirt.feup •feupnet – 6000 network plugs – wireless access • +150 access...
TRANSCRIPT
CSIRT.FEUPCSIRT.FEUP
CSIRT.FEUPCSIRT.FEUP
Transdisciplinarity
Proactivity
CSIRT.FEUPCSIRT.FEUP
• Tito Vieira– CICA Director
CSIRT.FEUPCSIRT.FEUP
• FEUPnet FEUPnet – 6000 network plugs6000 network plugs– Wireless AccessWireless Access
• +150 Access points+150 Access points• Most used areas Most used areas
coveragecoverage• Coverage maps in Coverage maps in
SiFEUPSiFEUP– Remote AccessRemote Access
• VPNVPN• TCPgateTCPgate
CSIRT.FEUPCSIRT.FEUP
• VoIPVoIP– LCR (Least Cost Route)LCR (Least Cost Route)
– e-mail integratione-mail integration
– IVR (Interactive Voice IVR (Interactive Voice Response)Response)
– Conference roomsConference rooms
– User levelsUser levels
– StatisticsStatistics
CSIRT.FEUPCSIRT.FEUP
• Paulo Vieira
– Network Administrator• Network access/routing policies• Firewall/routing equipment configuration
CSIRT.FEUPCSIRT.FEUP
• Systems AdministrationSystems Administration– E-mail / WebmailE-mail / Webmail– Email / Anti-spam Email / Anti-spam
protectionprotection– Working areas maintenanceWorking areas maintenance– BackupsBackups– Clusters Clusters
Unix/Linux/WindowsUnix/Linux/Windows– Support of many Support of many
engineering applicationsengineering applications– Antivirus available for all Antivirus available for all
usersusers
http://webmail.fe.up.pt/http://webmail.fe.up.pt/
CSIRT.FEUPCSIRT.FEUP
• Luis Andrade
– Antivirus/spyware– Local firewalls– GPG– Windows security policies– Windows updates– Windows log analysis
CSIRT.FEUPCSIRT.FEUP
• SiFEUPSiFEUP– Available in Available in
http://www.fe.up.pthttp://www.fe.up.pt
CSIRT.FEUPCSIRT.FEUP
• SIFEUP – Access rate
CSIRT.FEUPCSIRT.FEUP
• Gil Silva
– SIFEUP programmer• Extensive logging capabilities
CSIRT.FEUPCSIRT.FEUP
• Direct supportDirect support– Between 9 and 18hBetween 9 and 18h
• By phoneBy phone
• By e-mailBy e-mail– [email protected]@fe.up.pt
• Trouble Tickets Trouble Tickets SystemSystem
User Support - Helpdesk User Support - Helpdesk
CSIRT.FEUPCSIRT.FEUP
• LabsLabs• 29 general purpose 29 general purpose
roomsrooms– ~500 computers~500 computers– 30 laser printers30 laser printers– ““Dual boot”Dual boot”
Linux/WindowsLinux/Windows– Laptop usageLaptop usage– Available 24h/dayAvailable 24h/day– Technical support Technical support
between 8 and 20hbetween 8 and 20h
CSIRT.FEUPCSIRT.FEUPFEUP / CICA @ 2006FEUP / CICA @ 2006
Availability maps
CSIRT.FEUPCSIRT.FEUPFEUP / CICA @ 2006FEUP / CICA @ 2006
Software usage
CSIRT.FEUPCSIRT.FEUPFEUP / CICA @ 2006FEUP / CICA @ 2006
2006
J aneiro66734
Fevereiro62659
Março87436
Abril100391
Maio87428
J unho67140
J ulho37303
Agosto5436
Setembro61592
Outubro90414
Novembro108070
Dezembro52083
Entradas por Mês
CSIRT.FEUPCSIRT.FEUP
• Daniel Reis
– Computer installation coordination
20 de Setembro de 200720 de Setembro de 2007CSIRT.FEUPCSIRT.FEUP
• 1 Node since 2005
• 2 additional clusters
• Total: ~250 processors
• IBM Cluster
– 2 Master nodes:
- IbmCluster;
- Gridssh.
– 31 Working nodes
– 132 GByte RAM
– 3,45 TByte disk space
– About 200 GFlops
20 de Setembro de 200720 de Setembro de 2007CSIRT.FEUPCSIRT.FEUP
Jan Fev Mar Apr May Jun Jul Aug Sep Oct Nov Dec0
500
1000
1500
2000
2500
3000
3500
4000
2006:•Total Submitted jobs: 12500•Total Executed jobs: 10361•About 863 per month•Typical usage: 80 a 90%!
Grid Usage
CSIRT.FEUPCSIRT.FEUP
• Aníbal Leite
– Grid & HPC
CSIRT.FEUPCSIRT.FEUP
• António Marques
CSIRT.FEUPCSIRT.FEUP
• CSIRT.FEUP portal
• Vulnerabilities information dissemination– >320 critical
vulnerabilities, since beginning 2007
• Incident analysis
• Interaction with all elements of the team
CSIRT.FEUPCSIRT.FEUP
• Special Security Services– Incident Handling and Response ;-)– Vulnerability tracking
– 3S service– Personal security audit service