computer-security/vendor-contacts FAQ (HTML)

computer-security/vendor-contacts FAQ (HTML)

Post by Christopher Kla » Sat, 01 Feb 1997 04:00:00



Archive-name: computer-security/vendor-contacts
Posting-frequency: monthly
Last-modified: 1995/5/04
Version: 2.01

<HEAD>
<TITLE>ISS: Vendor Contacts FAQ</TITLE>
</HEAD>
<BODY>
<H1>Vendor Contacts FAQ<br></h1>
<i>Version: 3.00</i>
<hr>
This Security FAQ is a resource provided by:
<blockquote>
<pre>
Internet Security Systems, Inc.  
Suite 660, 41 Perimeter Center East          Tel: (770) 395-0150
Atlanta, Georgia 30346                       Fax: (770) 395-1972
</pre>
</blockquote>
<hr>
To get the newest updates of Security files check the following services:      
<p>
<blockquote>
<a href = "http://www.iss.net"/>
        http://www.iss.net/</a>
<br>    
<a href = "ftp://ftp.iss.net/pub">
        ftp ftp.iss.net /pub/ </a>
<br>
<p>
</blockquote>
To subscibe to the update mailing list, Alert, send an e-mail to
<a href = mailto:request-al...@iss.net> request-al...@iss.net</a> and, in the text of your message (not the subject line), write:
<blockquote>
        subscribe alert
</blockquote>
<hr>

<p>
<blockquote>
"It [Vendor Security Contact FAQ] is the kind of thing that makes you look
good at work when your boss decides he's joe security and wants a patch (for
like rdist - duh!) yesterday..."
<cite>
- Tim Scanlon, System Analyst
</cite>
</blockquote>
</p>

<h2>Vendor Security Contacts: Reporting Vulnerabilities
        and Obtaining New Patches</h2>

<p>
        The following FAQ is a list of security contacts to reach at various
vendors for reporting security vulnerabilities and obtaining new security
related patches.  
<p>
</p>
        With the rising number of people and hosts gaining access to the
Internet, the basic integrity of the Net needs to be maintained.  Many of
security incidents that happen on Internet could have been avoided by
installing security patches that are available by vendors.  It is important
to get the recent patches and ensure that your systems are configured
properly.  With intruders and their underground network having quick access
to security vulnerabilities, it is important that administrators have
security information available and not rely on just One organization.
<p>
</p>
        Here are the security contacts that information is available for:
<ul>
<li><a href = "#aux">A/UX</a>
<li><a href = "#cray">Cray Research</a>
<li><a href = "#dgc">Data General Corporation</a>
<li><a href ="#dec">Dec</a>
<li><a href = "#hp">HP</a>
<li><a href = "#ibm">IBM</a>
<li><a href = "#mot">Motorola</a>
<li><a href = "#next">Next</a>
<li><a href = "#novell">Novell</a>
<li><a href = "#sco">SCO</a>
<li><a href = "#sgi">SGI</a>
<li><a href = "#sun">Sun</a>  
</ul>

<p>
Other important security contacts included are:
<ul>
<li><a href = "#cert">CERT Contact</a>
<li><a href = "#ciac">CIAC Contact</a>
<li><a href = "#first">FIRST Contact</a>
</ul>
</p>

<p>
When reporting a new security bug, try to be as specific as
possible about how to reproduce it, which OS release (uname -a), and any
other release numbers of software that are involved.
</p>

<hr size=5>
<!-- AUX, Apple Computer ------------------------------------------------->

<h3><a name = "aux">A/UX</a></h3>

<p>
Contact information for A/UX as follows:

<ul>
<li>Send security related information to the following people:
<ul>
<li>Erik E. Fair: <a href=mailto:f...@apple.com>f...@apple.com</a>
      and CC: <a href=mailto:st...@apple.com>st...@apple.com</a>
</ul>
</ul>

<!-- Cray Research ------------------------------------------------------->
<hr>

<h3><a name = "cray">Cray Research</a></h3>

<p>
Contact information for Cray Research as follows:
</p>
<p>
Cray Research customers should first direct questions and concerns to on-site
support personnel (if provided by their service contract).  Other contacts
should be made through:

<blockquote>
Customer Support Call Center (CSCC) <br>
Cray Research, Inc.       <br>
655F Lone Oak Drive       <br>
Eagan MN 55121            <br>
USA                       <br>
                          <br>
tel. +1-612-683-5600      <br>
email. <a href=mailto:supp...@cray.com>supp...@cray.com</a><br>
</blockquote>
</p>

<!-- Data General Corporation -------------------------------------------->
<hr>
<h3><a name = "dgc">DG, Data General Corporation </a></h3>
<p>
Contact information for DG is as follows:
<ul>
<li>Send security related information to the following person:
<ul>
<p>
<li>
Kevin Peterson
<a href = "mailto:peter...@dg-rtp.dg.com">
(peter...@dg-rtp.dg.com)</a>
<p>
Data General Corp
<br>
62 Tw Alexander Drive
<br>
RTP, NC  27709
<p>
Phone:  919-248-6011
</ul>
</ul>
Patches (security or nonsecurity) are distributed through our
Support Centers (and/or local office).
<p>
<!-- DEC, Digital Equipment Corporation ---------------------------------->
<hr>

<h3><a name = "dec">DEC, Digital Equipment Corporation</a></h3>

<p>
Contact information for DEC is as follows:

<ul>
<li>Send security related information to the following person:
<ul>
<li>FIRST Contact:  Rich Boren <a href=mailto:rich.bo...@cxo.mts.dec.com>
rich.bo...@cxo.mts.dec.com</a>, (719) 592-4689
</ul>        
</ul>
Security patches are issued by Customer Support Centers.
</p>

<!-- HP, Hewlett Packard ------------------------------------------------->
<hr>

<h3><a name = "hp">HP, Hewlett Packard</a></h3>

<p>
Contact information for HP as follows:
<ul>
<li>For security concerns, questions, or problems, you can contact:
<ul>
<li><a href=mailto:security-al...@hp.com>security-al...@hp.com</a>
</ul>
</ul>
</p>

<p>
Obtaining Patches:
</p>
<p>
Patches and mailing lists are available through the HP SupportLine service.  
More information is available in their <a href=hpsupport.html>bulletin</a>.
The HP SupportLine mail service is available to anyone who can send electronic
mail via the Internet.
</p>
For a guide how to obtain patches via email send mail to
<a href = mailto:supp...@support.mayfield.hp.com> supp...@support.mayfield.hp.com </a> with the line "send guide" in the text
portion of the mail.
<p>

<hr>
<!-- IBM, International Business Machines -------------------------------->
<h3><a name = "ibm">IBM, International Business Machines</a></h3>

<p>
Contact information for IBM as follows:
<ul>
<li>IBM support @ 1-800 237-5511
<li>Email to <a href=mailto:servi...@austin.ibm.com>servi...@austin.ibm.com</a>
</ul>      

<p>
  Send security related information to Nick Trio
(<a href=mailto:n...@watson.ibm.com>n...@watson.ibm.com</a>, a.k.a.
(<a href=mailto:postmas...@ibm.com>postmas...@ibm.com</a>) Unix person on
IBM's Computer Emergency Response Team) and Alan Fedeli (
<a href=mailto:fed...@vnet.ibm.com>fed...@vnet.ibm.com</a>).
</p>
<p>
  There are some security patches on anonymous FTP
<a href=ftp://software.watson.ibm.com/pub/aix3>software.watson.ibm.com</a>
in pub/aix3 for AIX.
</p>

<p>
Security patches are issued through your IBM sales office.
</p>

<hr>
<!-- Novell, Inc -------------------------------------------------------->
<h3><a name = "novell">Novell, Inc.</a></h3>

<p>
Contact information for Novell as follows:
<ul>
<li> Phone number: 800-4-UNIVEL
</ul>
Security patches are available from:
<ul>
<li> Compuserve
<li> ftp from <a href =  "ftp://ftp.novell.com/">ftp.novell.com</a>
<li> floppy from the Novell support folks
</ul>
<p>

<hr>
<!-- Motorola  ----------------------------------------------------------->
<h3><a name = "mot">Motorola</a></h3>
Contact information for Motorola is as follows:
<p>
<blockquote>
     For security concerns, questions, or problems with Motorola
     Products contact your sales or support representative.
<p>
     For security concerns, questions, or problems related to
     incidents in progress or Motorola's presence on the Internet:
<ul>
<li>     +1-708-576-1616 (for emergencies)
<li>        +1-708-538-2153 (fax)
<li>    <a href = "mailto:mc...@mot.com">    mc...@mot.com </a>
</ul>
</blockquote>
For Motorola Computer Group:
<p>

<blockquote>
     For security concerns, questions, or problems with Motorola
     Products contact your sales or support representative.
<p>
     For security concerns, questions, or problems related to
     incidents in progress or MCG's presence on the Internet:
<blockquote>
<a href = "mailto:security-al...@mcd.mot.com">
        security-al...@mcd.mot.com </a>
</blockquote>
     For emergencies, contact the emergency number listed above.
<p>
     Starting in 1995, MCG has started to provide certain security
     patches for MCG products on anonymous ftp from ftp.mcd.mot.com in
     pub/patches.  Patches are also available via your sales or
     support representative.
</blockquote>

<hr>
<!-- NeXT ---------------------------------------------------------------->
<h3><a name = "next">NeXT</a></h3>

<p>
Contact information for Next as follows:
<ul>
<li>Technical Support: <a href=mailto:ask_n...@next.com>ask_n...@next.com</a>
<li>Phone number: 800.848.6398
</ul>
Address:
<blockquote>
900 Chesapeake Drive<br>
Redwood City, CA  94063<br>
</blockquote>

<hr>
<!-- SCO, Santa Cruz Operation ------------------------------------------->

<h3><a name = "sco">SCO</a></h3>

<p>
Contact information for The Santa Cruz Operation (SCO):
<ul>
<li>Send security related information to:
<a href=mailto:security-al...@sco.com>security-al...@sco.com</a>
</ul>
<p>
Security patches are issued on an as-needed basis and will be available
at <a href=ftp://ftp.sco.com/>ftp.sco.com</a> and its mirrors.
</p>
<p>
When submitting information about a security problem, please include
output of the following commands:
<pre>
  uname -X
  swconfig
  hwconfig -h        (if hardware-related)
</pre>
and as much detail about the problem as you can muster.
</p>

<hr>
<!-- SGI, Silicon Graphics ----------------------------------------------->
<h3><a name = "sgi">SGI - Silicon Graphics Incoporated</a></h3>

<p>
Contact information for SGI as follows:
<ul>
<li>Send security related information to:
<a href=mailto:security-al...@sgi.com>security-al...@sgi.com</a>
<br>
If there is no response, try Dave Olson
<a href=mailto:ol...@sgi.com>(ol...@sgi.com)</a> or Miguel Sanchez
<a href=mailto:miguel.sgi.com>(mig...@sgi.com)</a>.
<br>
<br>
<li>Inside US:
<ul>
<li>Support line: 1-800-800-4SGI
</ul>
<p>
<li>Outside US/Canada:
<ul>
<li>Contact your local SGI support provider
</ul>
<p>
<li>FTP Site:
<ul>
<li>
<a href = "ftp://ftp.sgi.com/">ftp.sgi.com (192.48.153.1)
</a>
<li>        When available, patches are placed in the directories
<ul>

<li>      security
<br>
<li>   sgi/IRIX4.0
<br>
<li> sgi/IRIX5.0
</ul>
</ul>
</ul>

<hr>
<!-- SUN, Sun Microsystems ----------------------------------------------->
<h3><a name = "sun">Sun</a></h3>

<p>
Contact information for Sun as follows:
<ul>
<li>email: <a href=mailto:security-al...@sun.com>security-al...@sun.com</a>
<li>phone: 415-688-9081
<li>Fax:   415-688-9101

<li>postal:
<blockquote>
  Sun Security Coordinator<br>
  MS MPK2-04<br>
  2550 Garcia Avenue<br>
  Mountain View, CA 97703-1100<br>
</blockquote>
</ul>

<p>
<i>
For reporting security vulnerabilities and problems, Sun strongly recommends
that you report problems to your local Answer Center and your representative
computer security response team, such as CERT. In some cases your local Answer
Center will accept a report of a security bug even if you do not have a support
contract. An additional notification to the security-alert alias is suggested
but should not be used as your primary vehicle for reporting a bug.
</i>
</p>

<h4>Sun Security Bulletins</h4>

<p>
Sun Security Bulletins are available free of charge as part of our Customer
Warning System. It is not necessary to have a Sun support contract in order
to receive them.
</p>
<p>

To subscribe to this bulletin series, send mail to the address
"security-al...@Sun.COM" with the subject "subscribe CWS your-mail-address"
and a message body containing affiliation and contact information. To request
that your name be removed from the mailing list, send mail to the same
address with the subject "unsubscribe CWS your-mail-address". Do not include
other requests or reports in a subscription message.
</p>
<p>

Due to the volume of subscription requests Sun receives, Sun cannot guarantee
to acknowledge requests.  Please contact the security office if you wish to
verify that your subscription request was received, or if you would like your
bulletin delivered via postal mail or fax.
</p>
<p>

Sun Security Bulletins are archived on ftp.uu.net (in the same directory as
the patches) and on SunSolve. Please try these sources first before
contacting the security office for old bulletins.
</p>

<hr size=5>
<!-- Other Resources ----------------------------------------------------->

<h2>Other Resources</h2>

<hr>
<!-- CERT ---------------------------------------------------------------->
<h3><a name = "cert">CERT  (Computer Emergency Response Team)</a></h3>
<p>
The CERT (Computer Emergency Response Team).  To report a vulnerability
contact CERT at:
<ul>
<li>E-mail:  <a href=mailto:c...@cert.org>c...@cert.org</a>
</ul>
<p>
Past advisories and other information related to computer security are
available for anonymous FTP from <a href=ftp://cert.org/>cert.org</a>
(192.88.209.5).
</p>
<p>  
See the <a href=resources.html>Security Resources FAQ</a>
for more information on CERT and vulnerability reporting forms.
</p>

<hr>
<!-- CIAC ---------------------------------------------------------------->
<h3><a name = "ciac">CIAC  (Computer Incident Advisory Capability)</a></h3>
<p>  
The CIAC (Computer Incident Advisory Capability) of DoE.  To report a
vulnerability, contact CIAC at
<ul>
<li>voice:   510-422-8193
<li>fax:     510-423-8002
<li>stu-iii: 510-423-2604
<li>or mail <a href=mailto:c...@llnl.gov>c...@llnl.gov</a>.  
</ul>
<p>
Previous CIAC bulletins and other
information is available via anonymous ftp from ciac.llnl.gov (ip address
128.115.51.53).  
</p>
<p>  
See the <a href=resources.html>Security Resources FAQ</a>
for more information on CIAC advisories and mailing lists.
</p>
<hr>
<!-- FIRST --------------------------------------------------------------->
<h3><a name = "first">FIRST  (Forum of Incident Response and Security Teams)</a></h3>
<p>
FIRST (Forum of Incident Response and Security Teams).  To report a
vulnerability, contact FIRST at
<ul>
<li>voice:   310-975-3359
<li>fax:     310-948-0279
<li>web: <a href = http://first.org/first>http://first.org/first</a>
<li>or mail <a href=mailto:fi...@first.org>fi...@first.org</a>.
</ul>
<p>

<hr size=5>
<h2>Acknowledgements</h2>

<p>
Thanks go to the following people for providing new or updated information
to be included in this FAQ:
<ul>
<li> Dave Millar for helping provide a portion of the information.
<li> (Walter Misar) mi...@rbg.informatik.th-darmstadt.de
<li> Steve Cooper, spcoo...@llnl.gov
</ul>

<hr>
<copyright>
<h3>Copyright</h3>

<pre>
This paper is Copyright (c) 1994, 1995, 1996
   by Christopher Klaus of Internet Security Systems, Inc.
</pre>
<p>
Permission is hereby granted to give away free copies electronically.  You may
distribute, transfer, or spread this paper electronically.  You may not
pretend that you wrote it.  This copyright notice must be maintained in any
copy made.  If you wish to reprint the whole or any part of this paper in any
other medium excluding electronic medium, please ask the author for permission.
</copyright>

<h3>Disclaimer</h3>
<p>
        The information within this paper may change without notice. Use of
this information constitutes acceptance for use in an AS IS condition.
There are NO warranties with regard to this information. In no event shall
the author be liable for any damages whatsoever arising out of or in
connection with the use or spread of this information.  Any use of this
information is at the user's own risk.
</p>

<h3>Address of Author</h3>

<p>
Please send suggestions, updates, and comments to:      
<address>
Christopher Klaus
<a href=mailto:ckl...@iss.net>&#60;ckl...@iss.net&#62;</a>
of Internet Security Systems, Inc.
<a href=mailto:i...@iss.net>&#60;i...@iss.net&#62;</a>
</address>

</PRE>
</BODY>
<p>
<h3>Internet Security Systems, Inc. </h3>
ISS is the leader in network security tools and technology through
innovative audit, correction, and monitoring software. The Atlanta-based
company's flagship product, Internet Scanner, is the leading commercial
attack simulation and security audit tool. The Internet Scanner
SAFEsuite is based upon ISS' award-winning Internet Scanner and was
specifically designed with expanded capabilities to assess a variety of
network security issues confronting web sites, firewalls, servers and
workstations. The Internet Scanner SAFEsuite is the most comprehensive
security assessment tool available.  For more information about ISS or
its products, contact the company at (770) 395-0150 or e-mail at
i...@iss.net. ISS maintains a Home Page on the World Wide Web at
http://www.iss.net
--
Christopher William Klaus            Voice: (770)395-0150. Fax: (770)395-1972
Internet Security Systems, Inc.              "Internet Scanner SAFEsuite finds
Ste. 660,41 Perimeter Center East,Atlanta,GA 30346 your network security holes
Web: http://www.iss.net/  Email: ckl...@iss.net        before the hackers do."