[Dshieldannounce] Expanded User Profile.

Johannes B. Ullrich jullrich at euclidian.com
Mon Oct 15 17:14:42 UTC 2001


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


I added more detailed 'user profile' questions. If you log in to the site
(http://www.dshield.org/login.php), you will see the questions in the
lower half of the page.

Answering these questions is optional. I added them to understand better
who is submitting data to DShield, and to offer some more personalized
reports in the future.

Some of the questions I try to answer is if home users see different
attacks than business users, or if particular firewall/IDS packages see
attacks others don't.

In the future, we may publish reports that show what attacks target
certain industries or geographic areas. Much of this we still have to work
out once we have the data.

One of the services we may offer is early warnings that indicate if users
with a similar profile experience distinct attack patterns. If you are a
home user with a cable modem in the Netherlands, and we see a lot of users
in this group targeted by a given attack, we may send out a note to all
users in this group and alert them of this fact.

But for much of this, we will have to collect some data first and see how
useful these reports will be.


- --
- -------
jullrich at sans.org                    Join http://www.DShield.org
                                     Distributed Intrusion Detection System

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE7yxflVOIizK5pIDMRAhE4AJ4kYipz3+9DQZk8566+fGR1YQ1DbQCgnY9n
xH21JsDbG95gEXNM0q/Kgso=
=FZs5
-----END PGP SIGNATURE-----





More information about the Dshieldannounce mailing list