Reporting abuse of computing and network resources

Should a computer or network abuse at the University of Erlangen-Nuremberg come to your attention, please contact the University of Erlangen-Nuremberg Site Security Contact at RRZE immediately. Please report the following topics with as many details as possible:

  • Email address(es) or other identification information
  • IP address(es) or the names of the workstations or systems concerned
  • System logs
  • Exact date and time of the incident (including timezone if not MET or MEST)

Your report will be treated confidentially and will be processed by the next working day. It will be taken seriously and investigated promptly.

Encrypted communication

You can send us an encrypted email. You need an S/MIME capable email client and the email certificate of our security team. Please consider that email headers won’t be encrypted. This applies especially to the email subject.

Security Incidents

If a security incident on a computer comes to the attention of the RRZE, the corresponding IT-admin and, if necessary, the holder of the chair, get an e-mail.

This is how the RRZE starts a security measurement. The IT-admin is notified about the security problem along with information on the computer concerned and informed that the device might be blocked from the subnet through firewall rules. Thus, the communication between the internet and the system is disabled. Subsequently, it is the IT-admin’s job to deal with the problem. As an example, this can be done by a search for viruses or trojans. As soon as the problem is solved, the IT-admin has to inform the RRZE.

In case of security incidents, the RRZE sets a deadline of 2 working days. Within this period, the IT-admin of the disconnected computer must have contacted and informed the RRZE on the the status of the treatment of the problem. Should that not be done, the complete subnet might be disconnected from the university net according to the severity of the incident to prevent the security problem from spreading.