mbm mbm@rlogin.net wrote:
Thirdly, please do /not/ go direct to CERT at Carnegie Mellon. Instead contact the UK CSIRT at csirtuk@cpni.gsi.gov.uk if you wish to send sensitive information (their public key may be found at http://www.cpni.gov.uk/key.aspx) or if you just want to report the general outlines of the attack, then send an email to infosec@cpni.gov.uk. (See http://www.cpni.gov.uk/MethodsOfAttack/report.aspx for details).
When did UK CSIRT start to care about small .uk domains? Last report I submitted to them (about a year ago IIRC) got a "go away kid, you ain't national infrastructure" sort of reaction.
If it's "extremely important" why is it buried so deep on their website?
Do any other list subscribers have thoughts on setting up a GNU+Linux WARP? http://www.warp.gov.uk/
Regards,