SCADASEC-L Usage Policy

1.0 Administrivia

1.1 Charter of the SCADASEC-L Mailing List

1.1.1 What is SCADASEC-L?

The SCADASEC-L mailing list is meant to provide a common forum to discuss security concepts, ideas, theories, along with non-detailed discussions regarding publicly known vulnerabilities and exploits that have affected this community. This includes, but is not limited to, companies and/or organizations who represent end-user communities utilizing said technologies or architectures, government personnel (local, state, and federal), IT security professionals, SCADA security professionals, homeland security professionals, development organizations (vendors who provide the technology to SCADA), and more. This list is designed for people who are not necessarily security experts. As such, it is also an excellent resource for the beginner who wants a non-threatening place to learn the ropes.

1.1.2 What is appropriate content?

The following are what topics are allowed and/or should be posted to the SCADASEC-L mailing list:

• Tips on SCADA, computer, or network security.
• Affordable software solutions that is non-commercial (no advertising).
• Affordable hardware solutions that is non-commercial (no advertising).
• Security patches for commonly used software or hardware.
• Security policies for infrastructure businesses and sectors.
• Visionary or future direction of SCADA and/or CIP.

1.1.3 What is inappropriate content?

The following will *not* be tolerated on the SCADASEC-L mailing list; failure to comply will result in the offending party’s removal:

• Announcement of security vulnerabilities in technical detail.
• Any announcements where US/ICS-CERT or DHS have NOT been notified.
• Vulnerability announcements where notification has NOT been given.
• Product advertisements.
• Discussion of advanced security issues in technical detail.
• Non-SCADA/non-computer security related material.
• Slanderous commentary in a public venue of any nature.

1.1.4 Can I mention about my conference?

We encourage the open distribution of information to the user community. However, due to the commercial aspect that a conference implies, we try and limit the amount of times that a conference organizer may announce to the SCADASEC-L mailing list, and therefore will allow a maximum of only TWO (2) ANNOUNCEMENT for each conference: one announcement posting to provide the general membership with the public announcement to the conference, and one announcement posting to provide any updates or last-minute information about the conference.

1.1.5 Is the list moderated?

Normally, no; however, the list can (and will be) from time to time “temporarily moderated” to prevent “flame wars”. This is at the discretion of both the list owners, and of the moderators.

1.1.6 Who are the list moderators?

Bob Radvanovsky
Jake Brodsky

The moderators are all representative of varying degrees of expertise, and welcome comments at any time. Questions regarding the SCADASEC-L mailing list, or SCADA/control systems’ security related questions, issues, incidents, etc., may be directed (via email) to the moderators at “moderator@infracritical.com“.

1.2 History of SCADASEC-L

1.2.1 When was SCADASEC-L created?

SCADASEC-L was initially created on Sunday, the 3rd of February, 2008 by Bob Radvanovsky, Jake Brodsky and Mark Fabro as its co-founders.

1.2.2 Was the original charter always this way?

Yes, the original charter was to share and promote information exchange. Unfortunately, because of integration issues, tempers do flare (sometimes), and the varying parties need to understand that this is a common ground for meeting, sharing and exchanging ideas, philosophies, and more. It stands firm today, more than ever, as it did in February, 2008.

1.3 List Management

1.3.1 How do I subscribe to the SCADASEC-L mailing list?

Via your web browser, visit our web site at:

http://news.infracritical.com/mailman/listinfo/scadasec

Please enter your name, email address, and you will receive a confirmation within 5-10 minutes. One of the moderators will acknowledge your wanting to join SCADASEC-L, and will acknowledge when time is available, your acceptance into the mailing discussion group.

1.3.2 How do I unsubscribe from the SCADASEC-L mailing list?

Via your web browser, visit our web site at:

http://news.infracritical.com/mailman/options/scadasec

1.3.3 How do I disable mail delivery temporarily?

Unsubscribe from the list and re-subscribe to start receiving mailing list traffic again. Also, if we receive too many bounce-back messages from a particular email address, that address may be either “temporarily disabled”, or unsubscribed entirely by one of the moderators.

1.3.4 Is the list available in a digest format?

Yes, the digested form of the list is made available 1-2 times daily, depending on the amount of email traffic ingested.

1.3.5 How do I subscribe to the digest?

Same method as subscribing, only select “Digest ONLY”.

1.3.6 How do I unsubscribe from the digest?

Same method as outlined in Section 1.3.2.

1.3.7 I seem to not be able to unsubscribe — what is going on?

You are probably subscribed from a different address than that from which you are sending commands to the list from. Either send email from the appropriate address or email the list owner, Bob Radvanovsky (rsradvan@infracritical.com) to be unsubscribed manually.

1.4 Troubleshooting

1.4.1 Why are my email posting not going through?

The SCADASEC mailing list has its content filtered to prevent the accidental spreading of any malicious software (malware).  This means that emails that are not “plain text only”, will (more than likely) be rejected; this includes emails that are “rich formatted” emails (generally using a webmail client), “MIME/type” emails (using an email client, such as Microsoft Outlook or Outlook Express), or “HTML formatted” emails (again, generally using a webmail client, such as Google Mail [Gmail], Hotmail, Yahoo, etc.).

1.4.2 Why are my attachments not being forwarded as part of my email posting?

Similar to Section 1.4.1, an attached email message means that the email is using the “MIME/type” email formatting.  The reason for disallowing attachments is three-fold: (1) not all members may be interested in the attached document(s); (2) provides a preventative measure to protect our membership from any malicious software which may be embedded within the attached document(s); and (3) conserve on bandwidth utilized by this mailing list.  If found included within the email posting to the list, all attachments will be stripped from each and every email posting.

Our recommendation is to submit the attachment as a separate document to the moderators of the SCADASEC mailing list, where we can validate that the document is “malware free”, and will post the document on our web site for distribution; after this has been done, a web site URL link will be disseminated to the membership for retrieval from their own sites.  We do not discourage individuals from submitting documents for general distribution; however, we ask that you respect our policy in this venue, and allow us to scan and verify that your document(s) are “malware free”.

1.4.3. My email posting showed up <x> hours later – why?

At the moment, there are only two moderators. We both live in North America and need to work and sleep. There are times of the day when neither of us are able to approve your posts right away. Delays of several hours are to be expected. We currently do not have moderators on other continents, so unfortunately we are somewhat time-biased.

We hope that such delays, though not intentional, will encourage people to be more thoughtful in their replies, knowing that it may take time to put on the list and to get a response.

1.4.4. I am still not getting my emails from the list – why?

One thought may be that some ISPs are poorly regarded for rampant spam problems by other ISPs. The result is that, depending upon who your ISP is, you may not be able to post. The list of bad actors can include some fairly well known and very large operations.  Though both of us realize that this may be frustrating, please note that there are several factors which may be causing your issue, and in some circumstances, none of the more common reasons may be the culprit.  Therefore, if the problem persists, and you feel that you would like to continue receiving the SCADASEC mailing list, for those with continued problems posting, we suggest using services from Yahoo, Gmail, or other such well known, free, e-mail clients. Though we do everything we can with what we get, sometimes we don’t even get your email for approval.

1.5 Disclaimer Statement for Usage of the SCADASEC-L mailing list

DISCLAIMER: Any and all relevant discussions, postings, or otherwise, outlined, shared or distributed on the SCADASEC-L mailing list are the responsibility of the originating and/or corresponding author and/or posting party, and shall in no way, hold either the list owner, Infracritical, or any of the moderators, responsible, accountable, liable whatsoever. The SCADASEC-L mailing list discussion forum is provided for the benefit of everyone associated with and/or participating to discussions that pertain to or are relevant to SCADA and/or control systems security discussions thereof.