A short while ago, I wrote about our friends at StopBadware and their initiative to draft a document that covers best practices when dealing with malware of all kinds.
The support received been fantastic and they’re now on the second draft of the RFC. This is an important issue that affects all of us. If you have something to say, StopBadware would really appreciate your feedback before this Friday (Feb 11).
From the StopBadware blog:
About two weeks ago, we put out an initial request for comments on a public draft of our new best practices. This RFC was met with insightful, eminently practical advice from our expert working group and the security community. After incorporating some of the suggestions from these groups, we have a second draft of the Practices ready for review and comment. The second public draft of StopBadware’s Best Practices for Web Hosting Providers: Responding to Malware Reports is available here in doc andpdf format.
This is intended to be the last draft of the Practices; we’ll be accepting comments until Friday, February 11, 2011. The final best practices document will be publicly available within a few weeks. Thanks to all those from our community and the security industry who have given us such dedicated thought and creativity during the course of this project!
You can join our mailing list here.
StopBadware originated at Harvard University’s Berkman Center for Internet & Society in 2006. In 2010, they spun off as a non-profit organization with the support of Google, PayPal, and Mozilla. Their board of directors, chaired by PayPal Chief Information Security Officer Michael Barrett, also includes Vint Cerf (Google), Esther Dyson (EDventure), Paul Mockapetris (Nominum), Mike Shaver (Mozilla), and our executive director, Maxim Weinstein.