CSIRT

Last updated: 
5 days 4 hours ago
Blog Manager
Log in to request membershipHide blog description

We are the Computer Security and Incident Response Team (CSIRT) for the Janet network. Part of Jisc's Security Operations Centre, our mission is to safeguard the current and future network security of Janet (steering the security policies for all Janet connections) and of our customers, creating a secure environment to conduct your online activities. Our primary function is monitor and resolve any security incidents that occur on the Janet network, with specialists tracking a range of platforms, including Unix, Linux and Windows.

Blog Article

Simple ways to improve your DNS resilience and security: #3 TTL and expire timers

So you've designed your redundant architecture and ensured that your data is being replicated across it? All set? Not quite. Within your DNS configuration there are two timers that we frequently see misconfigured -  TTL values and the SOA expire value.

Frequently we see these left at default a default of one day (86400 seconds). Whilst these may suit many organisations it's worth taking a closer look to make sure that they match your expectation for your DNS services.

DNS
Resilience
SOA
expire
TTL
DDOS
25 June 2014 at 2:15pm
James Davis
Blog Article

Simple ways to improve your DNS resilience and security: #2 Zone Transfers

Having designed a redundant DNS infrastructure, one of the most common mistakes is failing to ensure that secondary nameservers can successfully replicate data for the domains it is hosting. The most common way this is done on the Internet is though zone transfers - the AXFR command. This command causes a DNS server to reply with all the data it knows for a domain.

DNS
Resilience
axfr
security
infosec
zone-transfer
24 June 2014 at 1:53pm
James Davis
Prev | Next