Difference between revisions of "EGI CSIRT:TDG-NEW"
Line 37: | Line 37: | ||
|} | |} | ||
== Guides, Best Practices and Technical Advices | {| width="100%" | ||
|- | |||
| style="width:50%; border: 1px solid rgb(221, 221, 221);; background: none repeat scroll 0% 0% rgb(249, 249, 249); vertical-align:top; color:#000;" | | |||
{| width="100%" style="vertical-align: top; background: none repeat scroll 0% 0% rgb(249, 249, 249);" | |||
|- | |||
! style="padding:2px;background-color: lightgray;" | | |||
<big>'''Guides, Best Practices and Technical Advices'''</big> | |||
=== | |- | ||
[ | | style="color:#000;" | <div id="mp-tfa" style="padding:2px 5px"> | ||
'''Incident Handling''' | |||
[[EGI_CSIRT:TDG/Incident-handl | Suggestions]] on the way an incident should be handled in EGI | |||
'''EMI Community Service Reference Cards''' | |||
The [https://twiki.cern.ch/twiki/bin/view/EMI/EMTSrcTemplate#SrcLinks Service Reference Cards] are a collection of short guides on the middleware services provided by the developers. Each card contains also a security paragraph with useful suggestions about configuration and operational procedures. | The [https://twiki.cern.ch/twiki/bin/view/EMI/EMTSrcTemplate#SrcLinks Service Reference Cards] are a collection of short guides on the middleware services provided by the developers. Each card contains also a security paragraph with useful suggestions about configuration and operational procedures. | ||
'''Resource Access Control''' | |||
[ | |||
[[EGI_CSIRT:TDG/Resource-Access | How to control]] the access to grid resources. | |||
'''Monitoring''' | |||
[[EGI_CSIRT:Monitoring | Monitoring Tools]] used in EGI-InSPIRE and recommended to the Resource Centers | |||
'''Intrusion Detection and Integrity Checking''' | |||
== SPG (Security Policy Group) Official Documents for EGI == | When correctly configured and tuned, Intrusion Detection Systems (IDS) and Integrity Checkers are very useful tools to promptly discover system compromise or even prevent it. In [[EGI_CSIRT:TDG/IDS | this section]] some of the most used IDS are listed together with links to the documentation | ||
'''Best Practices (General)''' | |||
[[EGI-CSIRT:TDG/best_pract | A collection]] of small feeds and suggestions to improve the security of our sites. | |||
|} | |||
|} | |||
{| width="100%" | |||
|- | |||
| style="width:50%; border: 1px solid rgb(221, 221, 221);; background: none repeat scroll 0% 0% rgb(249, 249, 249); vertical-align:top; color:#000;" | | |||
{| width="50%" style="vertical-align: top; background: none repeat scroll 0% 0% rgb(249, 249, 249);" | |||
|- | |||
! style="padding:2px;background-color: lightgray;" | | |||
<big>'''SPG (Security Policy Group) Official Documents for EGI'''</big> | |||
|- | |||
| style="color:#000;" | <div id="mp-tfa" style="padding:2px 5px"> | |||
The Security Policy Group (SPG) aims to provide policies that define the expected behaviour of sites and users to ensure a secure distributed computing infrastructure. | The Security Policy Group (SPG) aims to provide policies that define the expected behaviour of sites and users to ensure a secure distributed computing infrastructure. | ||
The list of approved EGI policies can be found [[https://wiki.egi.eu/wiki/SPG:Documents here]] | The list of approved EGI policies can be found [[https://wiki.egi.eu/wiki/SPG:Documents here]] | ||
|} | |||
{| width="50%" style="vertical-align: top; background: none repeat scroll 0% 0% rgb(249, 249, 249);" | |||
|- | |||
! style="padding:2px;background-color: lightgray;" | | |||
<big>'''External Material'''</big> | |||
== | |- | ||
| style="color:#000;" | <div id="mp-tfa" style="padding:2px 5px"> | |||
'''ISSeG training material''' | |||
The project [http://isseg.web.cern.ch/ISSeG/home.htm Integrated Site Security for Grids (ISSeG)] produced [http://isseg-training.web.cern.ch/ISSeG-training/ training and dissemination] site. The site contains practical site security recommendations that are based on the lessons learnt from Integrated Site Security deployment at ISSeG target sites. | The project [http://isseg.web.cern.ch/ISSeG/home.htm Integrated Site Security for Grids (ISSeG)] produced [http://isseg-training.web.cern.ch/ISSeG-training/ training and dissemination] site. The site contains practical site security recommendations that are based on the lessons learnt from Integrated Site Security deployment at ISSeG target sites. | ||
|} | |||
|} |
Revision as of 16:17, 22 November 2012
EGI-CSIRT web site | EGI-CSIRT Public wiki | EGI-CSIRT Contacts | EGI-CSIRT Activities | EGI-CSIRT Private wiki |
EGI-CSIRT Training and Dissemination Group (TDG)
The EGI-CSIRT Training and Dissemination Group objective is to rise security awareness among Grid users and Grid Resource Providers and act as a a collection point for best practices, tutorials and trainings both internal and external to the EGI-InSPIRE project.
Events Organized by the NGIs Security events, tutorials and workshops, are often organized inside the NGIs or international forums and contain useful information for the community. The material linked here has not officially been validated by the EGI-CSIRT and is provided as it is for users convenience. Training Testbed EGI CSIRT has implemented a Training Testbed which allows to execute incident handling and forensics hands-on in a very realistic scenario. |
|
|