CSIRT

Last updated: 
4 months 1 week ago
Blog Manager
Log in to request membershipHide blog description

We are the Computer Security and Incident Response Team (CSIRT) for the Janet network. Part of Jisc's Security Operations Centre, our mission is to safeguard the current and future network security of Janet (steering the security policies for all Janet connections) and of our customers, creating a secure environment to conduct your online activities. Our primary function is monitor and resolve any security incidents that occur on the Janet network, with specialists tracking a range of platforms, including Unix, Linux and Windows.

Blog Article

Heartbleed OpenSSL Vulnerability CVE-2014-0160

We have responded to the announcement of the OpenSSL vulnerability today, 8th April 2014.

Technical advice (detailed below) has been issued to colleagues across the sector to assist them in responding to this vulnerability.

In addition, replacement certificates, for those organisations affected by this vulnerability, will be issued at no cost by the Janet Certificate Service. If your organisation is affected by the OpenSSL vulnerability and is taking steps to address this, and requiring a replacement certificate, then please visit the following url for further information.

CSIRT
openssl
vulnerability
Software Vulnerabilities
17 April 2014 at 2:49pm
Lee Harrigan-Green
Blog Article

Critical Vulnerability in FreeRADIUS

A critical vulnerability had been found in FreeRADIUS versions 2.1.10 - 2.1.12 with configurations using TLS-based EAP
methods (including EAP-TLS, EAP-TTLS, and PEAP) this allows an attacker to execute code on affected systems prior to authenticated.
 
In order to mitigate the vulnerability it is advisable to upgrade all affected systems to FreeRADIUS 2.2.0 as soon as possible.
 
FreeRadius
vulnerability
10 September 2012 at 4:04pm
Bradley Freeman
Prev | Next