Hello, my name is Michael Hines and I am the Sr. Information Systems Auditor at Purdue University, in West Lafayette, Indiana, USA. I am a member of the Purdue Computer Emergency Response Team, a part of the FIRST organizaiton. We care constantly looking for tools and techniques to assist in incident detection and system correction or system protection. We have enough business to have a serious concern about intrusion. With both Spafford and Currey on campus...many people think it is fun to try to hack into these accounts, and their host systems. We have a different opinion about "fun"... :) We are seeing a growing use of UNIX based systems in our Admin Computing area, as we are starting to move toward Client/Server computing. I also montior the firewalls list (@greatcircle.com) and view that as a "prevention" method rather than as a detection method. I am more interested in approaches which prevent intrusion, rather than after the fact detection. But detection is certainly important, as there are probabily more people than are aware that their system has either been hacked, or is currently under surveilance. I'm looking forward to exhanging ideas with others with similar interests. My background is BS Engineering, MS Computer Science - Purdue U. So I can talk policy, philosophy or bits and bytes at whatever level you want to. I'm glad to see this list come into being... ---------------------------------------------------------------------- Internet: mshines@ia.purdue.edu | Michael S. Hines Bitnet: michaelh@purccvm | Sr. Information Systems Auditor Purdue WIZARD Mail: MSHINES | Purdue University GTE Net Voice: (317) 494-5845 | 1065 Freehafer Hall GTE Net FAX: (317) 496-1814 | West Lafayette, IN 47907-1065 CompuServe: 73240,1631 | America On-Line: mysterios |