https://csirt.docapost.fr/api.php?action=feedcontributions&feedformat=atom&user=ScarpentierDocaposte Cyberdéfense - Contributions de l’utilisateur [fr]2026-06-22T22:58:26ZContributions de l’utilisateurMediaWiki 1.30.0https://csirt.docapost.fr/index.php?title=Information_de_s%C3%A9curit%C3%A9&diff=2720Information de sécurité2021-10-20T09:27:22Z<p>Scarpentier : </p>
<hr />
<div><br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 30%; background-color: #EBECEC; text-align: center;"|<br />
[[fichier:CSIRT.red.png|190px]]<br />
| style="width: 70%; background-color: #EBECEC; text-align: left;"|<br />
<span style="color:#000000"><br><br>'''Votre connexion vient d'être bloquée à destination des services de Docaposte. Veuillez vous rapprocher de l'équipe en charge du service'''</span><br />
<span style="color: #000000">'''Si vous pensez que cette restriction n'est pas justifiée, veuillez utiliser le formulaire de contact en y indiquant le numéro de support.'''</span><br />
<br><br />
<br><br />
====Informations techniques :====<br />
*<span style="color: #000000">Support ID :</span> <span style="color: #FF5657">'''{{#urlget:_event_transid}}'''</span><br />
<br><br />
|}</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Information_de_s%C3%A9curit%C3%A9&diff=2719Information de sécurité2021-10-20T09:27:02Z<p>Scarpentier : </p>
<hr />
<div><br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 30%; background-color: #EBECEC; text-align: center;"|<br />
[[fichier:CSIRT.red.png|190px]]<br />
| style="width: 70%; background-color: #EBECEC; text-align: left;"|<br />
<span style="color:#000000"><br><br>'''Votre connexion vient d'être bloquée à destination des services de Docaposte. Veuillez vous rapprocher de l'équipe en charge du service'''</span><br />
<span style="color: #000000">'''Si vous pensez que cette restriction n'est pas justifiée, veuillez utiliser le formulaire de contact'''</span><br />
<br><br />
<br><br />
====Informations techniques :====<br />
*<span style="color: #000000">Support ID :</span> <span style="color: #FF5657">'''{{#urlget:_event_transid}}'''</span><br />
<br><br />
|}</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Information_de_s%C3%A9curit%C3%A9&diff=2718Information de sécurité2021-10-20T09:26:01Z<p>Scarpentier : </p>
<hr />
<div><br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 30%; background-color: #EBECEC; text-align: center;"|<br />
[[fichier:CSIRT.red.png|190px]]<br />
| style="width: 70%; background-color: #EBECEC; text-align: left;"|<br />
<span style="color:#000000"><br><br>'''Votre connexion vient d'être bloquée à destination des services de Docaposte. Veuillez vous rapprocher de l'équipe en charge du service'''</span><br />
<span style="color: #000000">'''Si vous pensez que cette restriction n'est pas justifiée, veuillez nous écrire par mail à : <br><span style="color: #cc0000<br />
">[mailto:celluleweb-ants@interieur.gouv.fr?Subject=RWD_COSC_DCP%20-%20Accès%20refusé%20sur%20une%20ressource%20:%20{{#urlget:_event_transid}}&body=Veuillez%20indiquer%20la%20raison%20de%20l'%20accès <br> celluleweb-ants@interieur.gouv.fr]<span style="color:#000000">'''</span><br />
<br><br />
<br><br />
====Informations techniques :====<br />
*<span style="color: #000000">Support ID :</span> <span style="color: #FF5657">'''{{#urlget:_event_transid}}'''</span><br />
<br><br />
|}</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Information_de_s%C3%A9curit%C3%A9&diff=2717Information de sécurité2021-10-20T09:25:07Z<p>Scarpentier : Page créée avec « {| style="color: black; background-color: #ffffcc; width: 100%;" | style="width: 30%; background-color: #EBECEC; text-align: center;"| 190px | s... »</p>
<hr />
<div><br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 30%; background-color: #EBECEC; text-align: center;"|<br />
[[fichier:CSIRT.red.png|190px]]<br />
| style="width: 70%; background-color: #EBECEC; text-align: left;"|<br />
<span style="color:#000000"><br><br>'''Votre connexion vient d'être bloquée à destination des services de l'Agence Nationale des Titres Sécurisés.'''</span><br />
<span style="color: #000000">'''Si vous pensez que cette restriction n'est pas justifiée, veuillez nous écrire par mail à : <br><span style="color: #cc0000<br />
">[mailto:celluleweb-ants@interieur.gouv.fr?Subject=RWD_COSC_DCP%20-%20Accès%20refusé%20sur%20une%20ressource%20:%20{{#urlget:_event_transid}}&body=Veuillez%20indiquer%20la%20raison%20de%20l'%20accès <br> celluleweb-ants@interieur.gouv.fr]<span style="color:#000000">'''</span><br />
<br><br />
<br><br />
====Informations techniques :====<br />
*<span style="color: #000000">Support ID :</span> <span style="color: #FF5657">'''{{#urlget:_event_transid}}'''</span><br />
<br><br />
|}</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=MediaWiki:Tweeki-navbar-left&diff=2716MediaWiki:Tweeki-navbar-left2021-07-05T10:24:49Z<p>Scarpentier : </p>
<hr />
<div>RFC2350|<div style="color:#FFC617;">'''CSIRT'''</div>,Security.txt|<div style="color:#0000FF;">Security.txt</div></div>Scarpentierhttps://csirt.docapost.fr/index.php?title=MediaWiki:Tweeki-navbar-left&diff=2715MediaWiki:Tweeki-navbar-left2021-07-05T10:24:22Z<p>Scarpentier : </p>
<hr />
<div>RFC2350|<div style="color:#FFC617;">'''CSIRT'''</div>,SECURITY.TXT|<div style="color:#0000FF;">Security</div></div>Scarpentierhttps://csirt.docapost.fr/index.php?title=MediaWiki:Tweeki-navbar-left&diff=2714MediaWiki:Tweeki-navbar-left2021-07-05T10:24:09Z<p>Scarpentier : </p>
<hr />
<div>RFC2350|<div style="color:#FFC617;">'''CSIRT'''</div>,SECURITY.TXT<div style="color:#0000FF;">Security</div></div>Scarpentierhttps://csirt.docapost.fr/index.php?title=MediaWiki:Tweeki-navbar-left&diff=2713MediaWiki:Tweeki-navbar-left2021-07-05T10:20:37Z<p>Scarpentier : </p>
<hr />
<div>RFC2350|<div style="color:#FFC617;">'''CSIRT'''</div>,<div style="color:#0000FF;">Security.txt</div></div>Scarpentierhttps://csirt.docapost.fr/index.php?title=MediaWiki:Tweeki-navbar-left&diff=2712MediaWiki:Tweeki-navbar-left2021-07-05T10:20:29Z<p>Scarpentier : </p>
<hr />
<div>RFC2350|<div style="color:#FFC617;">'''CSIRT'''</div><div style="color:#0000FF;">Security.txt</div></div>Scarpentierhttps://csirt.docapost.fr/index.php?title=MediaWiki:Tweeki-navbar-left&diff=2711MediaWiki:Tweeki-navbar-left2021-07-05T10:20:20Z<p>Scarpentier : </p>
<hr />
<div>RFC2350|<div style="color:#FFC617;">'''CSIRT'''</div>,<div style="color:#0000FF;">Security.txt</div></div>Scarpentierhttps://csirt.docapost.fr/index.php?title=RFC2350&diff=2710RFC23502021-07-05T10:19:34Z<p>Scarpentier : </p>
<hr />
<div><btn class="btn-primary"><br />
TLP:WHITE<br />
C0<br />
</btn><br />
=== <center><div style="color:#FFFFFF; background-color: #0000FF">'''Description of CSIRT DOCAPOST'''</div></center> ===<br />
<br />
===<div style="color:#FFFFFF; background-color: #707173">'''1. Document Information'''</div>===<br />
<div style="color:#194466;"><br />
----<br />
<center>'''This document contains a description of CSIRT DOCAPOST according to RFC 2350. It provides information about the Computer Security Incident Response Team, how to contact the team, and describes its responsibilities and the services offered by the CSIRT DOCAPOST.'''</center><br />
----<br />
<br />
<br><br />
===='''1.1 Document revision'''====<br />
* This version has been updated at '''10/05/2018 13:35'''<br />
* This original version was published at '''12/02/2018 14:53'''<br />
<br><br />
<br />
===='''1.2 Distribution list for notifications'''====<br />
<br />
* There is no distribution list for notifications.<br />
<br><br />
<br />
===='''1.3 Locations where this document may be found'''====<br />
<br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 10%; background-color: white; text-align: left;"|<br />
[[Fichier:QRCode CSIRT URL RFC2350.png.png|100px]]<br />
| style="width: 70%; background-color: white;"|<br />
The current version of this document can be found at:<br />
https://csirt.docapost.fr/RFC2350_CSIRT_DOCAPOST.pdf<br />
<br />
|}<br />
<br />
===='''1.4 Document authenticity'''====<br />
<br />
* This document can be retrieved from only this site, using TLS/SSL also signed by the PGP certificate of ''CSIRT'' DOCAPOST.<br />
<br />
The signature of the file : <br />
https://csirt.docapost.fr/RFC2350_CSIRT_DOCAPOST.pdf.sig<br />
<br />
===<div style="color:#FFFFFF; background-color: #707173">'''2. Contact information'''</div>===<br />
----<br />
<center>'''This section describes how to contact the CSIRT DOCAPOST'''</center><br />
----<br />
<br />
<br><br />
===='''2.1 Name of the Team'''====<br />
<br />
* '''CSIRT DOCAPOST (C.O.S.C: Centre Opérationnel de Sécurité et de Cyberdéfense)'''<br />
* Short name : '''CSIRT-DOCAPOST'''<br />
<br><br />
<br />
The DOCAPOST-CSIRT Team's is supported by :<br />
<br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 10%; background-color: white; text-align: left;"|<br />
[[Fichier: Logo-laposte.png|130px]]<br />
| style="width: 60%; background-color: white;"|<br />
* '''Computer Emergency Response Team - La Poste'''<br />
* Short name : '''CERT La Poste'''<br />
* Accredited since 27 Mar 2015<br />
| style="width: 45%; background-color: white;"|<br />
[[Fichier: Ti-logo.jpg|200px]]<br />
|}<br />
<br><br />
<br />
===='''2.2 Address'''====<br />
<br />
'''CERT La Poste'''<br />
'''DISIT/SLCC (CISRT-DOCAPOST)'''<br />
5 rue Rene Viviani<br />
44263 Nantes cedex 2<br />
<br><br />
<br />
===='''2.3 Time Zone'''====<br />
<br />
*CEST / Central European Summer Time<br />
<br><br />
<br />
===='''2.4 Telephone Number'''====<br />
<br />
<br />
<br />
<br><br />
<br />
===='''2.5 Facsimile Number'''====<br />
<br />
[tel:+33234092746| Fax : +33 (0) 234 092 746]<br />
<br />
<br><br />
<br />
===='''2.6 Other Telecommunication'''====<br />
*None<br />
<br><br />
<br />
===='''2.7 Electronic Mail Address'''====<br />
<br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 10%; background-color: white; text-align: left;"|<br />
[[Fichier: 525949434995.png|100px]]<br />
| style="width: 70%; background-color: white;"|<br />
'''cert-fr[@]laposte.fr'''<br />
'''Sujet : [CSIRT DOCAPOST] : Incident description'''<br />
<br />
|}<br />
<br><br />
<br />
===='''2.8 Public key's and encryption information'''====<br />
The ''CSIRT-DOCAPOST'' current PGP key may be obtained by sending a request by mail for that at '''cert-fr[@]laposte.fr''' or is avaible on :<br />
<br><br />
*[https://pgp.docapost.fr/pks/lookup?op=get&search=0x6F6CB3F6878DA63E PGP DOCAPOST directory]<br />
*[https://pgp.mit.edu/pks/lookup?op=get&search=0x6F6CB3F6878DA63E PGP MIT directory]<br />
<br><br />
Key ID : '''0xE93BA775'''<br />
Fingerprint : '''5209 9E34 2D35 ADAF 3CEF 026C 4E8F 0E31 E93B A775'''<br />
<br />
<br><br />
<br />
===='''2.9 Team members'''====<br />
<br />
* The team consists of five people. <br />
* The team consists of IT security analysts. <br />
* No personal information is indicated in this document <br />
<br><br />
<br />
===='''2.10 Other information'''====<br />
<br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 10%; background-color: white; text-align: left;"|<br />
[[Fichier:QRCode CSIRT URL.png|100px]]<br />
| style="width: 70%; background-color: white;"|<br />
* The DOCAPOST ''Computer Security Incident Response Team'' portal is available at : https://csirt.docapost.fr<br />
|}<br />
<br />
===='''2.11 Points of customer contact'''====<br />
The ''CSIRT'' of DOCAPOST prefers to receive incident reports via e-mail. Please use our cryptographic keys above to ensure integrity and confidentiality. ''CSIRT'' DOCAPOST's hours of operation are restricted to regular business hours <br />
<br><br />
'''07:00-20:00''' '''Monday to Friday''', all year long.<br />
<br />
===<div style="color:#FFFFFF; background-color: #707173">'''3. Charter'''</div>===<br />
----<br />
<center>'''Within this section the CSIRT DOCAPOST mandate is described.'''</center><br />
----<br />
<br><br />
<br />
===='''3.1 Mission statement'''====<br />
The ''CSIRT'' of DOCAPOST's mission is to coordinate and investigate IT security incident response for the Group DOCAPOST. The ''CSIRT'' of DOCAPOST will investigate any security incident that may involve a '''''DOCAPOST Group subsidiarie''''' or '''''DOCAPOST''''' as a source or target of an attack or any cyber-threat.<br />
<br />
<br><br />
<br />
===='''3.2 Constituency'''====<br />
Our constituency are composed of DOCAPOST Group and all subsidiaries.<br />
<br />
<br><br />
<br />
===='''3.3 Sponsorship and/or affiliation'''====<br />
The ''CSIRT'' of DOCAPOST is the Computer Security Incident Response Team (CSIRT) for the Group DOCAPOST. His funding is provided by the DOCAPOST Group.<br />
<br />
<br><br />
<br />
===='''3.4 Authority'''====<br />
The ''CSIRT'' of DOCAPOST coordinate security incidents concerning our constituency.<br />
<br />
===<div style="color:#FFFFFF; background-color: #707173">'''4. Policies'''</div>===<br />
----<br />
<center>'''This section describes the policies of DOCAPOST CSIRT '''</center><br />
----<br />
<br />
===='''4.1 Types of incidents and level of support'''====<br />
The ''CSIRT'' of DOCAPOST addresses all kinds of security incidents which occur, or threaten to occur, within its constituency.<br />
<br />
The level of support depends on the type and severity of the given security incident.<br />
<br />
<br><br />
<br />
===='''4.2 Co-operation, interaction and disclosure of information'''====<br />
<br />
The DOCAPOST ''CSIRT'''s will exchange all necessary information with other CSIRT's as well as with other affected parties if they are involved in the incident or incident response process.<br />
<br />
No incident or vulnerability related information will be given to other persons. French law enforcement personnel requesting information in the course of a criminal investigation will be given the requested information within the limits of the court order and the criminal investigation, if they present a valid court order from a French court.<br />
<br />
<br><br />
<br />
===='''4.3 Communication and authentication'''====<br />
<br />
All e-mails sent to the ''CSIRT'' of DOCAPOST should be signed using PGP. All e-mails containing confidential information should be encrypted and signed using PGP. Information received in encrypted form should not be stored permanently in unencrypted form.<br />
<br />
For other communication, a phone call, postal service, or unencrypted e-mail may be used. The ''CSIRT'' of DOCAPOST supports the Information Sharing Traffic Light Protocol (TLP).<br />
<br />
===<div style="color:#FFFFFF; background-color: #707173">'''5. Services'''</div>===<br />
----<br />
<center>'''This section describes the services the CSIRT DOCAPOST offers'''</center><br />
----<br />
<br />
===='''5.1 Incident response'''====<br />
The team offers the following services :<br />
* Incident analysis<br />
* Incident response support<br />
* Incident response coordination<br />
* Vulnerability response coordination<br />
<br />
<br><br />
<br />
===='''5.2 Proactive activities'''====<br />
The team offers the following services :<br />
* Intrusion detection services<br />
<br />
<br><br />
<br />
===='''5.3 Reactive activities'''====<br />
The team offers the following services :<br />
* Awareness building<br />
<br />
===<div style="color:#FFFFFF; background-color: #707173">'''6. Incident reporting forms'''</div>===<br />
<br />
We do not have an incident reporting form. Please report security incidents via encrypted e-mail to '''csirt@docapost.fr'''<br />
<br />
DOCAPOST CSIRT not have an incident reporting form. Please report security incidents via encrypted e-mail to DOCAPOST CSIRT mail contact<br />
<br />
Incident reports should contain the following information:<br />
<br />
* Incident date and time (including time zone)<br />
* Source IPs, ports, and protocols<br />
* Destination IPs, ports, and protocols<br />
* Incident type <br />
* And any relevant information<br />
<br />
===<div style="color:#FFFFFF; background-color: #707173">'''7. Disclaimers'''</div>===<br />
<br />
This document is provided 'as is' without warranty of any kind, either expressed or implied, including, but not limited to, the implied warranties of merchantability, fitness for a particular purpose, or non-infringement.<br />
<br />
If you notice any mistakes within this document please send a message to us by e-mail. We will try to resolve such issues as soon as possible.<br />
<br />
<btn><br />
Accueil|Light Version|btn-success<br />
</btn></div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Security.txt&diff=2709Security.txt2021-07-05T10:18:45Z<p>Scarpentier : </p>
<hr />
<div><btn class="btn-primary"><br />
TLP:WHITE<br />
C0<br />
</btn><br />
=== <center><div style="color:#FFFFFF; background-color: #0000FF">'''Security contact'''</div></center> ===<br />
<br />
We provide a security.txt file for structured security contact information. You may also use email, via csirt@docaposte.fr addresse, but please remember that email is unencrypted by default and should not contain confidential or security-related information.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #0000FF>'''Security statement'''</div></center> ===<br />
<br />
The security of this site is of great importance and every effort is made to maintain industry-leading standards and processes. Security updates to all levels of software are implemented within a very short time-frame and the site is monitored constantly for modified files and unauthorised login attempts. Unless it is absolutely necessary to deliver the content or service you have requested, we do not record or process personal data. All links to third party sites are clearly marked and embedded content is identifiable and disclosed. For more information please refer to our privacy policy.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #0000FF">'''Disclosure policy'''</div></center> ===<br />
<br />
If you believe this site has a security vulnerability, we would be very happy to hear from you, provided that you follow the terms of our disclosure process:<br />
<br />
* The disclosure must be made following the contact procedure set out above.<br />
* The disclosure may be made anonymously.<br />
* The disclosure you make to us should relate directly to this site or to the email service associated with it.<br />
* The disclosure must relate to a service in our control, rather than to a matter which is the responsibility of a third party providing a service to us.<br />
*The disclosure must not be released to the public without our prior consent.<br />
* Abusive or threatening language, harassment, impersonation, or any other kind of criminal activity, will be reported to the relevant authorities and pursued to the full extent of the law.<br />
Automated penetration testing or unauthorised attempts to gain access to our site will be treated by us as a deliberate attack and be subject to legal action.<br />
* The disclosure must relate to a matter set out below and specifically not to matters such as the exact configuration of our current security headers or to recently announced zero-day vulnerabilities:<br />
<br />
** Information leakage, or leakage of personal data<br />
** Unauthorised access at either user or root level<br />
** Code injection<br />
** Remote code execution<br />
<br />
When a potential security issue is reported privately in accordance with these terms, we will check the issue and respond within one working week if you have provided valid contact details.<br />
<br />
We will not take legal action against anyone who reports a security concern to us privately, in accordance with this policy, and without having undertaken intrusive testing. We are not currently able to offer ‘bug bounties’ or similar cash rewards, but, with your consent, we would be happy to publish an acknowledgement on this site to express our gratitude.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #0000FF">'''Thanks and acknowledgements'''</div></center> ===<br />
<br />
CSIRT DOCAPOSTE would like to thank the following testers, researchers, and developers:<br />
<br />
* '''SLCC LA POSTE'''</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Security.txt&diff=2708Security.txt2021-07-05T10:18:20Z<p>Scarpentier : </p>
<hr />
<div><btn class="btn-primary"><br />
TLP:WHITE<br />
C0<br />
</btn><br />
=== <center><div style="color:#FFFFFF; background-color: #2DDFD5">'''Security contact'''</div></center> ===<br />
<br />
We provide a security.txt file for structured security contact information. You may also use email, via csirt@docaposte.fr addresse, but please remember that email is unencrypted by default and should not contain confidential or security-related information.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #2DDFD5>'''Security statement'''</div></center> ===<br />
<br />
The security of this site is of great importance and every effort is made to maintain industry-leading standards and processes. Security updates to all levels of software are implemented within a very short time-frame and the site is monitored constantly for modified files and unauthorised login attempts. Unless it is absolutely necessary to deliver the content or service you have requested, we do not record or process personal data. All links to third party sites are clearly marked and embedded content is identifiable and disclosed. For more information please refer to our privacy policy.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Disclosure policy'''</div></center> ===<br />
<br />
If you believe this site has a security vulnerability, we would be very happy to hear from you, provided that you follow the terms of our disclosure process:<br />
<br />
* The disclosure must be made following the contact procedure set out above.<br />
* The disclosure may be made anonymously.<br />
* The disclosure you make to us should relate directly to this site or to the email service associated with it.<br />
* The disclosure must relate to a service in our control, rather than to a matter which is the responsibility of a third party providing a service to us.<br />
*The disclosure must not be released to the public without our prior consent.<br />
* Abusive or threatening language, harassment, impersonation, or any other kind of criminal activity, will be reported to the relevant authorities and pursued to the full extent of the law.<br />
Automated penetration testing or unauthorised attempts to gain access to our site will be treated by us as a deliberate attack and be subject to legal action.<br />
* The disclosure must relate to a matter set out below and specifically not to matters such as the exact configuration of our current security headers or to recently announced zero-day vulnerabilities:<br />
<br />
** Information leakage, or leakage of personal data<br />
** Unauthorised access at either user or root level<br />
** Code injection<br />
** Remote code execution<br />
<br />
When a potential security issue is reported privately in accordance with these terms, we will check the issue and respond within one working week if you have provided valid contact details.<br />
<br />
We will not take legal action against anyone who reports a security concern to us privately, in accordance with this policy, and without having undertaken intrusive testing. We are not currently able to offer ‘bug bounties’ or similar cash rewards, but, with your consent, we would be happy to publish an acknowledgement on this site to express our gratitude.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Thanks and acknowledgements'''</div></center> ===<br />
<br />
CSIRT DOCAPOSTE would like to thank the following testers, researchers, and developers:<br />
<br />
* '''SLCC LA POSTE'''</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Security.txt&diff=2707Security.txt2021-07-05T10:17:44Z<p>Scarpentier : </p>
<hr />
<div><btn class="btn-primary"><br />
TLP:WHITE<br />
C0<br />
</btn><br />
=== <center><div style="color:#FFFFFF; background-color: #FF5657">'''Security contact'''</div></center> ===<br />
<br />
We provide a security.txt file for structured security contact information. You may also use email, via csirt@docaposte.fr addresse, but please remember that email is unencrypted by default and should not contain confidential or security-related information.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #FF5657>'''Security statement'''</div></center> ===<br />
<br />
The security of this site is of great importance and every effort is made to maintain industry-leading standards and processes. Security updates to all levels of software are implemented within a very short time-frame and the site is monitored constantly for modified files and unauthorised login attempts. Unless it is absolutely necessary to deliver the content or service you have requested, we do not record or process personal data. All links to third party sites are clearly marked and embedded content is identifiable and disclosed. For more information please refer to our privacy policy.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Disclosure policy'''</div></center> ===<br />
<br />
If you believe this site has a security vulnerability, we would be very happy to hear from you, provided that you follow the terms of our disclosure process:<br />
<br />
* The disclosure must be made following the contact procedure set out above.<br />
* The disclosure may be made anonymously.<br />
* The disclosure you make to us should relate directly to this site or to the email service associated with it.<br />
* The disclosure must relate to a service in our control, rather than to a matter which is the responsibility of a third party providing a service to us.<br />
*The disclosure must not be released to the public without our prior consent.<br />
* Abusive or threatening language, harassment, impersonation, or any other kind of criminal activity, will be reported to the relevant authorities and pursued to the full extent of the law.<br />
Automated penetration testing or unauthorised attempts to gain access to our site will be treated by us as a deliberate attack and be subject to legal action.<br />
* The disclosure must relate to a matter set out below and specifically not to matters such as the exact configuration of our current security headers or to recently announced zero-day vulnerabilities:<br />
<br />
** Information leakage, or leakage of personal data<br />
** Unauthorised access at either user or root level<br />
** Code injection<br />
** Remote code execution<br />
<br />
When a potential security issue is reported privately in accordance with these terms, we will check the issue and respond within one working week if you have provided valid contact details.<br />
<br />
We will not take legal action against anyone who reports a security concern to us privately, in accordance with this policy, and without having undertaken intrusive testing. We are not currently able to offer ‘bug bounties’ or similar cash rewards, but, with your consent, we would be happy to publish an acknowledgement on this site to express our gratitude.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Thanks and acknowledgements'''</div></center> ===<br />
<br />
CSIRT DOCAPOSTE would like to thank the following testers, researchers, and developers:<br />
<br />
* '''SLCC LA POSTE'''</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Security.txt&diff=2706Security.txt2021-07-05T10:17:13Z<p>Scarpentier : </p>
<hr />
<div><btn class="btn-primary"><br />
TLP:WHITE<br />
C0<br />
</btn><br />
=== <center><div style="color:#FFFFFF; background-color: #0000FF">'''Security contact'''</div></center> ===<br />
<br />
We provide a security.txt file for structured security contact information. You may also use email, via csirt@docaposte.fr addresse, but please remember that email is unencrypted by default and should not contain confidential or security-related information.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #0000FF>'''Security statement'''</div></center> ===<br />
<br />
The security of this site is of great importance and every effort is made to maintain industry-leading standards and processes. Security updates to all levels of software are implemented within a very short time-frame and the site is monitored constantly for modified files and unauthorised login attempts. Unless it is absolutely necessary to deliver the content or service you have requested, we do not record or process personal data. All links to third party sites are clearly marked and embedded content is identifiable and disclosed. For more information please refer to our privacy policy.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Disclosure policy'''</div></center> ===<br />
<br />
If you believe this site has a security vulnerability, we would be very happy to hear from you, provided that you follow the terms of our disclosure process:<br />
<br />
* The disclosure must be made following the contact procedure set out above.<br />
* The disclosure may be made anonymously.<br />
* The disclosure you make to us should relate directly to this site or to the email service associated with it.<br />
* The disclosure must relate to a service in our control, rather than to a matter which is the responsibility of a third party providing a service to us.<br />
*The disclosure must not be released to the public without our prior consent.<br />
* Abusive or threatening language, harassment, impersonation, or any other kind of criminal activity, will be reported to the relevant authorities and pursued to the full extent of the law.<br />
Automated penetration testing or unauthorised attempts to gain access to our site will be treated by us as a deliberate attack and be subject to legal action.<br />
* The disclosure must relate to a matter set out below and specifically not to matters such as the exact configuration of our current security headers or to recently announced zero-day vulnerabilities:<br />
<br />
** Information leakage, or leakage of personal data<br />
** Unauthorised access at either user or root level<br />
** Code injection<br />
** Remote code execution<br />
<br />
When a potential security issue is reported privately in accordance with these terms, we will check the issue and respond within one working week if you have provided valid contact details.<br />
<br />
We will not take legal action against anyone who reports a security concern to us privately, in accordance with this policy, and without having undertaken intrusive testing. We are not currently able to offer ‘bug bounties’ or similar cash rewards, but, with your consent, we would be happy to publish an acknowledgement on this site to express our gratitude.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Thanks and acknowledgements'''</div></center> ===<br />
<br />
CSIRT DOCAPOSTE would like to thank the following testers, researchers, and developers:<br />
<br />
* '''SLCC LA POSTE'''</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Security.txt&diff=2705Security.txt2021-07-05T10:16:48Z<p>Scarpentier : </p>
<hr />
<div><btn class="btn-primary"><br />
TLP:WHITE<br />
C0<br />
</btn><br />
=== <center><div style="color:#0000FF; background-color: #009EE0">'''Security contact'''</div></center> ===<br />
<br />
We provide a security.txt file for structured security contact information. You may also use email, via csirt@docaposte.fr addresse, but please remember that email is unencrypted by default and should not contain confidential or security-related information.<br />
<br />
=== <center><div style="color:#0000FF; background-color: #0000FF>'''Security statement'''</div></center> ===<br />
<br />
The security of this site is of great importance and every effort is made to maintain industry-leading standards and processes. Security updates to all levels of software are implemented within a very short time-frame and the site is monitored constantly for modified files and unauthorised login attempts. Unless it is absolutely necessary to deliver the content or service you have requested, we do not record or process personal data. All links to third party sites are clearly marked and embedded content is identifiable and disclosed. For more information please refer to our privacy policy.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Disclosure policy'''</div></center> ===<br />
<br />
If you believe this site has a security vulnerability, we would be very happy to hear from you, provided that you follow the terms of our disclosure process:<br />
<br />
* The disclosure must be made following the contact procedure set out above.<br />
* The disclosure may be made anonymously.<br />
* The disclosure you make to us should relate directly to this site or to the email service associated with it.<br />
* The disclosure must relate to a service in our control, rather than to a matter which is the responsibility of a third party providing a service to us.<br />
*The disclosure must not be released to the public without our prior consent.<br />
* Abusive or threatening language, harassment, impersonation, or any other kind of criminal activity, will be reported to the relevant authorities and pursued to the full extent of the law.<br />
Automated penetration testing or unauthorised attempts to gain access to our site will be treated by us as a deliberate attack and be subject to legal action.<br />
* The disclosure must relate to a matter set out below and specifically not to matters such as the exact configuration of our current security headers or to recently announced zero-day vulnerabilities:<br />
<br />
** Information leakage, or leakage of personal data<br />
** Unauthorised access at either user or root level<br />
** Code injection<br />
** Remote code execution<br />
<br />
When a potential security issue is reported privately in accordance with these terms, we will check the issue and respond within one working week if you have provided valid contact details.<br />
<br />
We will not take legal action against anyone who reports a security concern to us privately, in accordance with this policy, and without having undertaken intrusive testing. We are not currently able to offer ‘bug bounties’ or similar cash rewards, but, with your consent, we would be happy to publish an acknowledgement on this site to express our gratitude.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Thanks and acknowledgements'''</div></center> ===<br />
<br />
CSIRT DOCAPOSTE would like to thank the following testers, researchers, and developers:<br />
<br />
* '''SLCC LA POSTE'''</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Security.txt&diff=2704Security.txt2021-07-05T10:16:27Z<p>Scarpentier : </p>
<hr />
<div><btn class="btn-primary"><br />
TLP:WHITE<br />
C0<br />
</btn><br />
=== <center><div style="color:#0000FF; background-color: #009EE0">'''Security contact'''</div></center> ===<br />
<br />
We provide a security.txt file for structured security contact information. You may also use email, via csirt@docaposte.fr addresse, but please remember that email is unencrypted by default and should not contain confidential or security-related information.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Security statement'''</div></center> ===<br />
<br />
The security of this site is of great importance and every effort is made to maintain industry-leading standards and processes. Security updates to all levels of software are implemented within a very short time-frame and the site is monitored constantly for modified files and unauthorised login attempts. Unless it is absolutely necessary to deliver the content or service you have requested, we do not record or process personal data. All links to third party sites are clearly marked and embedded content is identifiable and disclosed. For more information please refer to our privacy policy.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Disclosure policy'''</div></center> ===<br />
<br />
If you believe this site has a security vulnerability, we would be very happy to hear from you, provided that you follow the terms of our disclosure process:<br />
<br />
* The disclosure must be made following the contact procedure set out above.<br />
* The disclosure may be made anonymously.<br />
* The disclosure you make to us should relate directly to this site or to the email service associated with it.<br />
* The disclosure must relate to a service in our control, rather than to a matter which is the responsibility of a third party providing a service to us.<br />
*The disclosure must not be released to the public without our prior consent.<br />
* Abusive or threatening language, harassment, impersonation, or any other kind of criminal activity, will be reported to the relevant authorities and pursued to the full extent of the law.<br />
Automated penetration testing or unauthorised attempts to gain access to our site will be treated by us as a deliberate attack and be subject to legal action.<br />
* The disclosure must relate to a matter set out below and specifically not to matters such as the exact configuration of our current security headers or to recently announced zero-day vulnerabilities:<br />
<br />
** Information leakage, or leakage of personal data<br />
** Unauthorised access at either user or root level<br />
** Code injection<br />
** Remote code execution<br />
<br />
When a potential security issue is reported privately in accordance with these terms, we will check the issue and respond within one working week if you have provided valid contact details.<br />
<br />
We will not take legal action against anyone who reports a security concern to us privately, in accordance with this policy, and without having undertaken intrusive testing. We are not currently able to offer ‘bug bounties’ or similar cash rewards, but, with your consent, we would be happy to publish an acknowledgement on this site to express our gratitude.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Thanks and acknowledgements'''</div></center> ===<br />
<br />
CSIRT DOCAPOSTE would like to thank the following testers, researchers, and developers:<br />
<br />
* '''SLCC LA POSTE'''</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Security.txt&diff=2703Security.txt2021-07-05T10:14:58Z<p>Scarpentier : </p>
<hr />
<div><btn class="btn-primary"><br />
TLP:WHITE<br />
C0<br />
</btn><br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Security contact'''</div></center> ===<br />
<br />
We provide a security.txt file for structured security contact information. You may also use email, via csirt@docaposte.fr addresse, but please remember that email is unencrypted by default and should not contain confidential or security-related information.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Security statement'''</div></center> ===<br />
<br />
The security of this site is of great importance and every effort is made to maintain industry-leading standards and processes. Security updates to all levels of software are implemented within a very short time-frame and the site is monitored constantly for modified files and unauthorised login attempts. Unless it is absolutely necessary to deliver the content or service you have requested, we do not record or process personal data. All links to third party sites are clearly marked and embedded content is identifiable and disclosed. For more information please refer to our privacy policy.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Disclosure policy'''</div></center> ===<br />
<br />
If you believe this site has a security vulnerability, we would be very happy to hear from you, provided that you follow the terms of our disclosure process:<br />
<br />
* The disclosure must be made following the contact procedure set out above.<br />
* The disclosure may be made anonymously.<br />
* The disclosure you make to us should relate directly to this site or to the email service associated with it.<br />
* The disclosure must relate to a service in our control, rather than to a matter which is the responsibility of a third party providing a service to us.<br />
*The disclosure must not be released to the public without our prior consent.<br />
* Abusive or threatening language, harassment, impersonation, or any other kind of criminal activity, will be reported to the relevant authorities and pursued to the full extent of the law.<br />
Automated penetration testing or unauthorised attempts to gain access to our site will be treated by us as a deliberate attack and be subject to legal action.<br />
* The disclosure must relate to a matter set out below and specifically not to matters such as the exact configuration of our current security headers or to recently announced zero-day vulnerabilities:<br />
<br />
** Information leakage, or leakage of personal data<br />
** Unauthorised access at either user or root level<br />
** Code injection<br />
** Remote code execution<br />
<br />
When a potential security issue is reported privately in accordance with these terms, we will check the issue and respond within one working week if you have provided valid contact details.<br />
<br />
We will not take legal action against anyone who reports a security concern to us privately, in accordance with this policy, and without having undertaken intrusive testing. We are not currently able to offer ‘bug bounties’ or similar cash rewards, but, with your consent, we would be happy to publish an acknowledgement on this site to express our gratitude.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Thanks and acknowledgements'''</div></center> ===<br />
<br />
CSIRT DOCAPOSTE would like to thank the following testers, researchers, and developers:<br />
<br />
* '''SLCC LA POSTE'''</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Security.txt&diff=2702Security.txt2021-07-05T10:14:46Z<p>Scarpentier : </p>
<hr />
<div><btn class="btn-primary"><br />
TLP:WHITE<br />
C0<br />
</btn><br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Security contact'''</div></center> ===<br />
<br />
We provide a security.txt file for structured security contact information. You may also use email, via csirt@docaposte.fr addresse, but please remember that email is unencrypted by default and should not contain confidential or security-related information.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Security statement'''</div></center> ===<br />
<br />
The security of this site is of great importance and every effort is made to maintain industry-leading standards and processes. Security updates to all levels of software are implemented within a very short time-frame and the site is monitored constantly for modified files and unauthorised login attempts. Unless it is absolutely necessary to deliver the content or service you have requested, we do not record or process personal data. All links to third party sites are clearly marked and embedded content is identifiable and disclosed. For more information please refer to our privacy policy.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Disclosure policy'''</div></center> ===<br />
<br />
If you believe this site has a security vulnerability, we would be very happy to hear from you, provided that you follow the terms of our disclosure process:<br />
<br />
* The disclosure must be made following the contact procedure set out above.<br />
* The disclosure may be made anonymously.<br />
* The disclosure you make to us should relate directly to this site or to the email service associated with it.<br />
* The disclosure must relate to a service in our control, rather than to a matter which is the responsibility of a third party providing a service to us.<br />
*The disclosure must not be released to the public without our prior consent.<br />
* Abusive or threatening language, harassment, impersonation, or any other kind of criminal activity, will be reported to the relevant authorities and pursued to the full extent of the law.<br />
Automated penetration testing or unauthorised attempts to gain access to our site will be treated by us as a deliberate attack and be subject to legal action.<br />
* The disclosure must relate to a matter set out below and specifically not to matters such as the exact configuration of our current security headers or to recently announced zero-day vulnerabilities:<br />
<br />
** Information leakage, or leakage of personal data<br />
** Unauthorised access at either user or root level<br />
** Code injection<br />
** Remote code execution<br />
<br />
When a potential security issue is reported privately in accordance with these terms, we will check the issue and respond within one working week if you have provided valid contact details.<br />
<br />
We will not take legal action against anyone who reports a security concern to us privately, in accordance with this policy, and without having undertaken intrusive testing. We are not currently able to offer ‘bug bounties’ or similar cash rewards, but, with your consent, we would be happy to publish an acknowledgement on this site to express our gratitude.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Thanks and acknowledgements'''</div></center> ===<br />
<br />
CSIRT DOCAPOSTE would like to thank the following testers, researchers, and developers:<br />
<br />
* SLCC LA POSTE</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Security.txt&diff=2701Security.txt2021-07-05T10:12:52Z<p>Scarpentier : </p>
<hr />
<div><btn class="btn-primary"><br />
TLP:WHITE<br />
C0<br />
</btn><br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Security contact'''</div></center> ===<br />
<br />
We provide a security.txt file for structured security contact information. You may also use email, via csirt@docaposte.fr addresse, but please remember that email is unencrypted by default and should not contain confidential or security-related information.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Security statement'''</div></center> ===<br />
<br />
The security of this site is of great importance and every effort is made to maintain industry-leading standards and processes. Security updates to all levels of software are implemented within a very short time-frame and the site is monitored constantly for modified files and unauthorised login attempts. Unless it is absolutely necessary to deliver the content or service you have requested, we do not record or process personal data. All links to third party sites are clearly marked and embedded content is identifiable and disclosed. For more information please refer to our privacy policy.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Disclosure policy'''</div></center> ===<br />
<br />
If you believe this site has a security vulnerability, we would be very happy to hear from you, provided that you follow the terms of our disclosure process:<br />
<br />
* The disclosure must be made following the contact procedure set out above.<br />
* The disclosure may be made anonymously.<br />
* The disclosure you make to us should relate directly to this site or to the email service associated with it.<br />
* The disclosure must relate to a service in our control, rather than to a matter which is the responsibility of a third party providing a service to us.<br />
*The disclosure must not be released to the public without our prior consent.<br />
* Abusive or threatening language, harassment, impersonation, or any other kind of criminal activity, will be reported to the relevant authorities and pursued to the full extent of the law.<br />
Automated penetration testing or unauthorised attempts to gain access to our site will be treated by us as a deliberate attack and be subject to legal action.<br />
* The disclosure must relate to a matter set out below and specifically not to matters such as the exact configuration of our current security headers or to recently announced zero-day vulnerabilities:<br />
<br />
** Information leakage, or leakage of personal data<br />
** Unauthorised access at either user or root level<br />
** Code injection<br />
** Remote code execution<br />
<br />
When a potential security issue is reported privately in accordance with these terms, we will check the issue and respond within one working week if you have provided valid contact details.<br />
<br />
We will not take legal action against anyone who reports a security concern to us privately, in accordance with this policy, and without having undertaken intrusive testing. We are not currently able to offer ‘bug bounties’ or similar cash rewards.</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Security.txt&diff=2700Security.txt2021-07-05T10:11:24Z<p>Scarpentier : </p>
<hr />
<div><btn class="btn-primary"><br />
TLP:WHITE<br />
C0<br />
</btn><br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Security contact'''</div></center> ===<br />
<br />
We provide a security.txt file for structured security contact information. You may also use email, via csirt@docaposte.fr addresse, but please remember that email is unencrypted by default and should not contain confidential or security-related information.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Security statement'''</div></center> ===<br />
<br />
The security of this site is of great importance and every effort is made to maintain industry-leading standards and processes. Security updates to all levels of software are implemented within a very short time-frame and the site is monitored constantly for modified files and unauthorised login attempts. Unless it is absolutely necessary to deliver the content or service you have requested, we do not record or process personal data. All links to third party sites are clearly marked and embedded content is identifiable and disclosed. For more information please refer to our privacy policy.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Disclosure policy'''</div></center> ===<br />
<br />
If you believe this site has a security vulnerability, we would be very happy to hear from you, provided that you follow the terms of our disclosure process:<br />
<br />
* The disclosure must be made following the contact procedure set out above.<br />
* The disclosure may be made anonymously.<br />
* The disclosure you make to us should relate directly to this site or to the email service associated with it.<br />
* The disclosure must relate to a service in our control, rather than to a matter which is the responsibility of a third party providing a service to us.<br />
*The disclosure must not be released to the public without our prior consent.<br />
* Abusive or threatening language, harassment, impersonation, or any other kind of criminal activity, will be reported to the relevant authorities and pursued to the full extent of the law.<br />
Automated penetration testing or unauthorised attempts to gain access to our site will be treated by us as a deliberate attack and be subject to legal action.<br />
* The disclosure must relate to a matter set out below and specifically not to matters such as the exact configuration of our current security headers or to recently announced zero-day vulnerabilities:<br />
<br />
** Information leakage, or leakage of personal data<br />
** Unauthorised access at either user or root level<br />
** Code injection<br />
** Remote code execution</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Security.txt&diff=2699Security.txt2021-07-05T10:10:54Z<p>Scarpentier : </p>
<hr />
<div><btn class="btn-primary"><br />
TLP:WHITE<br />
C0<br />
</btn><br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Security contact'''</div></center> ===<br />
<br />
We provide a security.txt file for structured security contact information. You may also use email, via csirt@docaposte.fr addresse, but please remember that email is unencrypted by default and should not contain confidential or security-related information.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Security statement'''</div></center> ===<br />
<br />
The security of this site is of great importance and every effort is made to maintain industry-leading standards and processes. Security updates to all levels of software are implemented within a very short time-frame and the site is monitored constantly for modified files and unauthorised login attempts. Unless it is absolutely necessary to deliver the content or service you have requested, we do not record or process personal data. All links to third party sites are clearly marked and embedded content is identifiable and disclosed. For more information please refer to our privacy policy.<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Disclosure policy'''</div></center> ===<br />
<br />
If you believe this site has a security vulnerability, we would be very happy to hear from you, provided that you follow the terms of our disclosure process:<br />
<br />
* The disclosure must be made following the contact procedure set out above.<br />
* The disclosure may be made anonymously.<br />
* The disclosure you make to us should relate directly to this site or to the email service associated with it.<br />
* The disclosure must relate to a service in our control, rather than to a matter which is the responsibility of a third party providing a service to us.<br />
*The disclosure must not be released to the public without our prior consent.<br />
Abusive or threatening language, harassment, impersonation, or any other kind of criminal activity, will be reported to the relevant authorities and pursued to the full extent of the law.<br />
Automated penetration testing or unauthorised attempts to gain access to our site will be treated by us as a deliberate attack and be subject to legal action.<br />
* The disclosure must relate to a matter set out below and specifically not to matters such as the exact configuration of our current security headers or to recently announced zero-day vulnerabilities:<br />
<br />
** Information leakage, or leakage of personal data<br />
** Unauthorised access at either user or root level<br />
** Code injection<br />
** Remote code execution</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Security.txt&diff=2698Security.txt2021-07-05T10:08:53Z<p>Scarpentier : </p>
<hr />
<div><btn class="btn-primary"><br />
TLP:WHITE<br />
C0<br />
</btn><br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Security contact'''</div></center> ===<br />
<br />
We provide a security.txt file for structured security contact information. You may also use email, via csirt@docaposte.fr addresse, but please remember that email is unencrypted by default and should not contain confidential or security-related information.<br />
----<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Disclosure policy'''</div></center> ===<br />
<br />
The security of this site is of great importance and every effort is made to maintain industry-leading standards and processes. Security updates to all levels of software are implemented within a very short time-frame and the site is monitored constantly for modified files and unauthorised login attempts. Unless it is absolutely necessary to deliver the content or service you have requested, we do not record or process personal data. All links to third party sites are clearly marked and embedded content is identifiable and disclosed. For more information please refer to our privacy policy.<br />
----<br />
<br />
----<br />
If you believe this site has a security vulnerability, we would be very happy to hear from you, provided that you follow the terms of our disclosure process:<br />
<br />
* The disclosure must be made following the contact procedure set out above.<br />
* The disclosure may be made anonymously.<br />
* The disclosure you make to us should relate directly to this site or to the email service associated with it.<br />
* The disclosure must relate to a service in our control, rather than to a matter which is the responsibility of a third party providing a service to us.<br />
*The disclosure must not be released to the public without our prior consent.<br />
Abusive or threatening language, harassment, impersonation, or any other kind of criminal activity, will be reported to the relevant authorities and pursued to the full extent of the law.<br />
Automated penetration testing or unauthorised attempts to gain access to our site will be treated by us as a deliberate attack and be subject to legal action.<br />
----</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Security.txt&diff=2697Security.txt2021-07-05T10:08:36Z<p>Scarpentier : </p>
<hr />
<div><btn class="btn-primary"><br />
TLP:WHITE<br />
C0<br />
</btn><br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Security contact'''</div></center> ===<br />
----<br />
We provide a security.txt file for structured security contact information. You may also use email, via csirt@docaposte.fr addresse, but please remember that email is unencrypted by default and should not contain confidential or security-related information.<br />
----<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Disclosure policy'''</div></center> ===<br />
----<br />
The security of this site is of great importance and every effort is made to maintain industry-leading standards and processes. Security updates to all levels of software are implemented within a very short time-frame and the site is monitored constantly for modified files and unauthorised login attempts. Unless it is absolutely necessary to deliver the content or service you have requested, we do not record or process personal data. All links to third party sites are clearly marked and embedded content is identifiable and disclosed. For more information please refer to our privacy policy.<br />
----<br />
<br />
----<br />
If you believe this site has a security vulnerability, we would be very happy to hear from you, provided that you follow the terms of our disclosure process:<br />
<br />
* The disclosure must be made following the contact procedure set out above.<br />
* The disclosure may be made anonymously.<br />
* The disclosure you make to us should relate directly to this site or to the email service associated with it.<br />
* The disclosure must relate to a service in our control, rather than to a matter which is the responsibility of a third party providing a service to us.<br />
*The disclosure must not be released to the public without our prior consent.<br />
Abusive or threatening language, harassment, impersonation, or any other kind of criminal activity, will be reported to the relevant authorities and pursued to the full extent of the law.<br />
Automated penetration testing or unauthorised attempts to gain access to our site will be treated by us as a deliberate attack and be subject to legal action.<br />
----</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Security.txt&diff=2696Security.txt2021-07-05T10:06:30Z<p>Scarpentier : </p>
<hr />
<div><btn class="btn-primary"><br />
TLP:WHITE<br />
C0<br />
</btn><br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Security contact'''</div></center> ===<br />
----<br />
We provide a security.txt file for structured security contact information. You may also use email, via csirt@docaposte.fr addresse, but please remember that email is unencrypted by default and should not contain confidential or security-related information.<br />
----<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Disclosure policy'''</div></center> ===<br />
----<br />
The security of this site is of great importance and every effort is made to maintain industry-leading standards and processes. Security updates to all levels of software are implemented within a very short time-frame and the site is monitored constantly for modified files and unauthorised login attempts. Unless it is absolutely necessary to deliver the content or service you have requested, we do not record or process personal data. All links to third party sites are clearly marked and embedded content is identifiable and disclosed. For more information please refer to our privacy policy.<br />
----</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Security.txt&diff=2695Security.txt2021-07-05T10:05:53Z<p>Scarpentier : </p>
<hr />
<div><btn class="btn-primary"><br />
TLP:WHITE<br />
C0<br />
</btn><br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Security contact'''</div></center> ===<br />
----<br />
We provide a security.txt file for structured security contact information. You may also use email, via csirt@docaposte.fr addresse, but please remember that email is unencrypted by default and should not contain confidential or security-related information.<br />
----<br />
<br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Disclosure policy'''</div></center> ===<br />
----</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Security.txt&diff=2694Security.txt2021-07-05T10:04:19Z<p>Scarpentier : </p>
<hr />
<div><btn class="btn-primary"><br />
TLP:WHITE<br />
C0<br />
</btn><br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Security contact'''</div></center> ===<br />
----<br />
We provide a security.txt file for structured security contact information. You may also use email, via csirt@docaposte.fr addresse, but please remember that email is unencrypted by default and should not contain confidential or security-related information.<br />
----</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Security.txt&diff=2693Security.txt2021-07-05T10:03:18Z<p>Scarpentier : Page créée avec « We provide a security.txt file for structured security contact information. You may also use email, via csirt@docaposte.fr addresse, but please remember that email is unen... »</p>
<hr />
<div>We provide a security.txt file for structured security contact information. You may also use email, via csirt@docaposte.fr addresse, but please remember that email is unencrypted by default and should not contain confidential or security-related information.</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=MediaWiki:Tweeki-navbar-left&diff=2692MediaWiki:Tweeki-navbar-left2021-07-05T09:58:47Z<p>Scarpentier : </p>
<hr />
<div>RFC2350|<div style="color:#FFC617;">'''CSIRT'''</div>,Security.txt</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=MediaWiki:Tweeki-navbar-left&diff=2691MediaWiki:Tweeki-navbar-left2021-07-05T09:57:55Z<p>Scarpentier : </p>
<hr />
<div>RFC2350|<div style="color:#FFC617;">'''CSIRT'''</div>,'''Security.txt'''</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Masque_PME_La_Poste&diff=2690Masque PME La Poste2020-04-30T16:21:02Z<p>Scarpentier : </p>
<hr />
<div><br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 30%; background-color: #EBECEC; text-align: center;"|<br />
[[fichier:CSIRT.red.png|190px]]<br />
| style="width: 70%; background-color: #EBECEC; text-align: left;"|<br />
<span style="color:#000000"><br><br>'''Votre connexion vient d'être bloquée à destination du service: https://masques-pme.laposte.fr'''</span><br />
<span style="color: #000000">'''Si vous pensez que cette restriction n'est pas justifiée, veuillez nous écrire par mail à : <br><span style="color: #cc0000<br />
">[mailto:masques-pme@production.docapost-bpo.com?Subject=RWD_COSC_DCP%20-%20Accès%20refusé%20sur%20une%20ressource%20:%20{{#urlget:_event_transid}}&body=Veuillez%20indiquer%20la%20raison%20de%20l'%20accès.%20Cet%20e-mail%20sera%20transféré%20au%20CSIRT%20DOCAPOSTE%20pour%20traitement. <br> masques-pme@production.docapost-bpo.com]<span style="color:#000000">'''</span><br />
<br><br />
<br><br />
====Informations techniques :====<br />
*<span style="color: #000000">Support ID :</span> <span style="color: #FF5657">'''{{#urlget:_event_transid}}'''</span><br />
<br><br />
|}</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Masque_PME_La_Poste&diff=2689Masque PME La Poste2020-04-30T16:17:57Z<p>Scarpentier : </p>
<hr />
<div><br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 30%; background-color: #EBECEC; text-align: center;"|<br />
[[fichier:CSIRT.red.png|190px]]<br />
| style="width: 70%; background-color: #EBECEC; text-align: left;"|<br />
<span style="color:#000000"><br><br>'''Votre connexion vient d'être bloquée à destination du service: https://masques-pme.laposte.fr'''</span><br />
<span style="color: #000000">'''Si vous pensez que cette restriction n'est pas justifiée, veuillez nous écrire par mail à : <br><span style="color: #cc0000<br />
">[mailto:masques-pme@production.docapost-bpo.com?Subject=RWD_COSC_DCP%20-%20Accès%20refusé%20sur%20une%20ressource%20:%20{{#urlget:_event_transid}}&body=Veuillez%20indiquer%20la%20raison%20de%20l'%20accès <br> masques-pme@production.docapost-bpo.com]<span style="color:#000000">'''</span><br />
<br><br />
<br><br />
====Informations techniques :====<br />
*<span style="color: #000000">Support ID :</span> <span style="color: #FF5657">'''{{#urlget:_event_transid}}'''</span><br />
<br><br />
|}</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Masque_PME_La_Poste&diff=2688Masque PME La Poste2020-04-30T16:14:02Z<p>Scarpentier : </p>
<hr />
<div><br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 30%; background-color: #EBECEC; text-align: center;"|<br />
[[fichier:CSIRT.red.png|190px]]<br />
| style="width: 70%; background-color: #EBECEC; text-align: left;"|<br />
<span style="color:#000000"><br><br>'''Votre connexion vient d'être bloquée à destination du service: https://masques-pme.laposte.fr'''</span><br />
<span style="color: #000000">'''Si vous pensez que cette restriction n'est pas justifiée, veuillez nous écrire par mail à : <br><span style="color: #cc0000<br />
">[mailto:xxxxx@docaposte.fr?Subject=RWD_COSC_DCP%20-%20Accès%20refusé%20sur%20une%20ressource%20:%20{{#urlget:_event_transid}}&body=Veuillez%20indiquer%20la%20raison%20de%20l'%20accès <br> xxxxx@docaposte.fr]<span style="color:#000000">'''</span><br />
<br><br />
<br><br />
====Informations techniques :====<br />
*<span style="color: #000000">Support ID :</span> <span style="color: #FF5657">'''{{#urlget:_event_transid}}'''</span><br />
<br><br />
|}</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Masque_PME_La_Poste&diff=2687Masque PME La Poste2020-04-30T16:13:17Z<p>Scarpentier : </p>
<hr />
<div><br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 30%; background-color: #EBECEC; text-align: center;"|<br />
[[fichier:CSIRT.red.png|190px]]<br />
| style="width: 70%; background-color: #EBECEC; text-align: left;"|<br />
<span style="color:#000000"><br><br>'''Votre connexion vient d'être bloquée à destination du service: https://masques-pme.laposte.fr'''</span><br />
<span style="color: #000000">'''Si vous pensez que cette restriction n'est pas justifiée, veuillez nous écrire par mail à : <br><span style="color: #cc0000<br />
">[mailto: xxxxx@docaposte.fr?Subject=RWD_COSC_DCP%20-%20Accès%20refusé%20sur%20une%20ressource%20:%20{{#urlget:_event_transid}}&body=Veuillez%20indiquer%20la%20raison%20de%20l'%20accès <br> xxxxx@docaposte.fr]<span style="color:#000000">'''</span><br />
<br><br />
<br><br />
====Informations techniques :====<br />
*<span style="color: #000000">Support ID :</span> <span style="color: #FF5657">'''{{#urlget:_event_transid}}'''</span><br />
<br><br />
|}</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Masque_PME_La_Poste&diff=2686Masque PME La Poste2020-04-30T16:09:14Z<p>Scarpentier : </p>
<hr />
<div><br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 30%; background-color: #EBECEC; text-align: center;"|<br />
[[fichier:CSIRT.red.png|190px]]<br />
| style="width: 70%; background-color: #EBECEC; text-align: left;"|<br />
<span style="color:#000000"><br><br>'''Votre connexion vient d'être bloquée à destination des services de l'Agence Nationale des Titres Sécurisés.'''</span><br />
<span style="color: #000000">'''Si vous pensez que cette restriction n'est pas justifiée, veuillez nous écrire par mail à : <br><span style="color: #cc0000<br />
">[mailto:celluleweb-ants@interieur.gouv.fr?Subject=RWD_COSC_DCP%20-%20Accès%20refusé%20sur%20une%20ressource%20:%20{{#urlget:_event_transid}}&body=Veuillez%20indiquer%20la%20raison%20de%20l'%20accès <br> celluleweb-ants@interieur.gouv.fr]<span style="color:#000000">'''</span><br />
<br><br />
<br><br />
====Informations techniques :====<br />
*<span style="color: #000000">Support ID :</span> <span style="color: #FF5657">'''{{#urlget:_event_transid}}'''</span><br />
<br><br />
|}</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Masque_PME_La_Poste&diff=2685Masque PME La Poste2020-04-30T16:08:20Z<p>Scarpentier : Page créée avec « <br> <br> {| style="color: black; background-color: #ffffcc; width: 100%;" | style="width: 30%; background-color: #EBECEC; text-align: center;"| fichier:CSIRT.red.png|19... »</p>
<hr />
<div><br><br />
<br><br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 30%; background-color: #EBECEC; text-align: center;"|<br />
[[fichier:CSIRT.red.png|190px]]<br />
| style="width: 70%; background-color: #EBECEC; text-align: left;"|<br />
<span style="color:#000000"><br><br>'''Votre connexion vient d'être bloquée pour votre sécurité.'''</span><br />
<span style="color: #000000">'''Si vous pensez que cette restriction n'est pas justifiée, veuillez nous écrire par mail à : <br><span style="color: #cc0000<br />
">[mailto:cob-securite@docapost.fr?Subject=Accès%20refusé%20sur%20une%20ressource%20internet%20:%20PTECT_PROx_DNx%20-%20Liste%20noire&body=Veuillez%20indiquer%20la%20raison%20de%20l'%20accès <br> cob-securite@docapost.fr]<span style="color:#000000">'''</span><br />
<br><br />
<br><br />
====Informations techniques :====<br />
*<span style="color: #000000">Mécanisme de blocage :</span> <span style="color: #0000FF">'''PTECT_PROX_DNx'''</span><br />
*<span style="color: #000000">Politique de sécurité :</span> <span style="color: #FF5657">'''Liste noire'''</span><br />
*<span style="color: #000000">Adresse IP :</span> <span style="color: #FF5657">'''{{#urlget:client_ip}}'''</span><br />
*<span style="color: #000000">Type :</span> <span style="color: #FF5657">'''{{#urlget:type}}'''</span><br />
*<span style="color: #000000">URL :</span> <span style="color: #FF5657">'''{{#urlget:url}}'''</span><br />
<br><br />
|}</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=DCPMSQ&diff=2684DCPMSQ2020-04-30T16:06:55Z<p>Scarpentier : Page créée avec « <br> <br> {| style="color: black; background-color: #ffffcc; width: 100%;" | style="width: 30%; background-color: #EBECEC; text-align: center;"| fichier:CSIRT.red.png|19... »</p>
<hr />
<div><br><br />
<br><br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 30%; background-color: #EBECEC; text-align: center;"|<br />
[[fichier:CSIRT.red.png|190px]]<br />
| style="width: 70%; background-color: #EBECEC; text-align: left;"|<br />
<span style="color:#000000"><br><br>'''Votre connexion vient d'être bloquée pour votre sécurité.'''</span><br />
<span style="color: #000000">'''Si vous pensez que cette restriction n'est pas justifiée, veuillez nous écrire par mail à : <br><span style="color: #cc0000<br />
">[mailto:cob-securite@docapost.fr?Subject=Accès%20refusé%20sur%20une%20ressource%20internet%20:%20PTECT_PROx_DNx%20-%20Liste%20noire&body=Veuillez%20indiquer%20la%20raison%20de%20l'%20accès <br> cob-securite@docapost.fr]<span style="color:#000000">'''</span><br />
<br><br />
<br><br />
====Informations techniques :====<br />
*<span style="color: #000000">Mécanisme de blocage :</span> <span style="color: #0000FF">'''PTECT_PROX_DNx'''</span><br />
*<span style="color: #000000">Politique de sécurité :</span> <span style="color: #FF5657">'''Liste noire'''</span><br />
*<span style="color: #000000">Adresse IP :</span> <span style="color: #FF5657">'''{{#urlget:client_ip}}'''</span><br />
*<span style="color: #000000">Type :</span> <span style="color: #FF5657">'''{{#urlget:type}}'''</span><br />
*<span style="color: #000000">URL :</span> <span style="color: #FF5657">'''{{#urlget:url}}'''</span><br />
<br><br />
|}</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=RFC2350&diff=2683RFC23502020-04-20T12:15:53Z<p>Scarpentier : </p>
<hr />
<div><btn class="btn-primary"><br />
TLP:WHITE<br />
C0<br />
</btn><br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Description of CSIRT DOCAPOST'''</div></center> ===<br />
<br />
===<div style="color:#FFFFFF; background-color: #707173">'''1. Document Information'''</div>===<br />
<div style="color:#194466;"><br />
----<br />
<center>'''This document contains a description of CSIRT DOCAPOST according to RFC 2350. It provides information about the Computer Security Incident Response Team, how to contact the team, and describes its responsibilities and the services offered by the CSIRT DOCAPOST.'''</center><br />
----<br />
<br />
<br><br />
===='''1.1 Document revision'''====<br />
* This version has been updated at '''10/05/2018 13:35'''<br />
* This original version was published at '''12/02/2018 14:53'''<br />
<br><br />
<br />
===='''1.2 Distribution list for notifications'''====<br />
<br />
* There is no distribution list for notifications.<br />
<br><br />
<br />
===='''1.3 Locations where this document may be found'''====<br />
<br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 10%; background-color: white; text-align: left;"|<br />
[[Fichier:QRCode CSIRT URL RFC2350.png.png|100px]]<br />
| style="width: 70%; background-color: white;"|<br />
The current version of this document can be found at:<br />
https://csirt.docapost.fr/RFC2350_CSIRT_DOCAPOST.pdf<br />
<br />
|}<br />
<br />
===='''1.4 Document authenticity'''====<br />
<br />
* This document can be retrieved from only this site, using TLS/SSL also signed by the PGP certificate of ''CSIRT'' DOCAPOST.<br />
<br />
The signature of the file : <br />
https://csirt.docapost.fr/RFC2350_CSIRT_DOCAPOST.pdf.sig<br />
<br />
===<div style="color:#FFFFFF; background-color: #707173">'''2. Contact information'''</div>===<br />
----<br />
<center>'''This section describes how to contact the CSIRT DOCAPOST'''</center><br />
----<br />
<br />
<br><br />
===='''2.1 Name of the Team'''====<br />
<br />
* '''CSIRT DOCAPOST (C.O.S.C: Centre Opérationnel de Sécurité et de Cyberdéfense)'''<br />
* Short name : '''CSIRT-DOCAPOST'''<br />
<br><br />
<br />
The DOCAPOST-CSIRT Team's is supported by :<br />
<br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 10%; background-color: white; text-align: left;"|<br />
[[Fichier: Logo-laposte.png|130px]]<br />
| style="width: 60%; background-color: white;"|<br />
* '''Computer Emergency Response Team - La Poste'''<br />
* Short name : '''CERT La Poste'''<br />
* Accredited since 27 Mar 2015<br />
| style="width: 45%; background-color: white;"|<br />
[[Fichier: Ti-logo.jpg|200px]]<br />
|}<br />
<br><br />
<br />
===='''2.2 Address'''====<br />
<br />
'''CERT La Poste'''<br />
'''DISIT/SLCC (CISRT-DOCAPOST)'''<br />
5 rue Rene Viviani<br />
44263 Nantes cedex 2<br />
<br><br />
<br />
===='''2.3 Time Zone'''====<br />
<br />
*CEST / Central European Summer Time<br />
<br><br />
<br />
===='''2.4 Telephone Number'''====<br />
<br />
<br />
<br />
<br><br />
<br />
===='''2.5 Facsimile Number'''====<br />
<br />
[tel:+33234092746| Fax : +33 (0) 234 092 746]<br />
<br />
<br><br />
<br />
===='''2.6 Other Telecommunication'''====<br />
*None<br />
<br><br />
<br />
===='''2.7 Electronic Mail Address'''====<br />
<br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 10%; background-color: white; text-align: left;"|<br />
[[Fichier: 525949434995.png|100px]]<br />
| style="width: 70%; background-color: white;"|<br />
'''cert-fr[@]laposte.fr'''<br />
'''Sujet : [CSIRT DOCAPOST] : Incident description'''<br />
<br />
|}<br />
<br><br />
<br />
===='''2.8 Public key's and encryption information'''====<br />
The ''CSIRT-DOCAPOST'' current PGP key may be obtained by sending a request by mail for that at '''cert-fr[@]laposte.fr''' or is avaible on :<br />
<br><br />
*[https://pgp.docapost.fr/pks/lookup?op=get&search=0x6F6CB3F6878DA63E PGP DOCAPOST directory]<br />
*[https://pgp.mit.edu/pks/lookup?op=get&search=0x6F6CB3F6878DA63E PGP MIT directory]<br />
<br><br />
Key ID : '''0xE93BA775'''<br />
Fingerprint : '''5209 9E34 2D35 ADAF 3CEF 026C 4E8F 0E31 E93B A775'''<br />
<br />
<br><br />
<br />
===='''2.9 Team members'''====<br />
<br />
* The team consists of five people. <br />
* The team consists of IT security analysts. <br />
* No personal information is indicated in this document <br />
<br><br />
<br />
===='''2.10 Other information'''====<br />
<br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 10%; background-color: white; text-align: left;"|<br />
[[Fichier:QRCode CSIRT URL.png|100px]]<br />
| style="width: 70%; background-color: white;"|<br />
* The DOCAPOST ''Computer Security Incident Response Team'' portal is available at : https://csirt.docapost.fr<br />
|}<br />
<br />
===='''2.11 Points of customer contact'''====<br />
The ''CSIRT'' of DOCAPOST prefers to receive incident reports via e-mail. Please use our cryptographic keys above to ensure integrity and confidentiality. ''CSIRT'' DOCAPOST's hours of operation are restricted to regular business hours <br />
<br><br />
'''07:00-20:00''' '''Monday to Friday''', all year long.<br />
<br />
===<div style="color:#FFFFFF; background-color: #707173">'''3. Charter'''</div>===<br />
----<br />
<center>'''Within this section the CSIRT DOCAPOST mandate is described.'''</center><br />
----<br />
<br><br />
<br />
===='''3.1 Mission statement'''====<br />
The ''CSIRT'' of DOCAPOST's mission is to coordinate and investigate IT security incident response for the Group DOCAPOST. The ''CSIRT'' of DOCAPOST will investigate any security incident that may involve a '''''DOCAPOST Group subsidiarie''''' or '''''DOCAPOST''''' as a source or target of an attack or any cyber-threat.<br />
<br />
<br><br />
<br />
===='''3.2 Constituency'''====<br />
Our constituency are composed of DOCAPOST Group and all subsidiaries.<br />
<br />
<br><br />
<br />
===='''3.3 Sponsorship and/or affiliation'''====<br />
The ''CSIRT'' of DOCAPOST is the Computer Security Incident Response Team (CSIRT) for the Group DOCAPOST. His funding is provided by the DOCAPOST Group.<br />
<br />
<br><br />
<br />
===='''3.4 Authority'''====<br />
The ''CSIRT'' of DOCAPOST coordinate security incidents concerning our constituency.<br />
<br />
===<div style="color:#FFFFFF; background-color: #707173">'''4. Policies'''</div>===<br />
----<br />
<center>'''This section describes the policies of DOCAPOST CSIRT '''</center><br />
----<br />
<br />
===='''4.1 Types of incidents and level of support'''====<br />
The ''CSIRT'' of DOCAPOST addresses all kinds of security incidents which occur, or threaten to occur, within its constituency.<br />
<br />
The level of support depends on the type and severity of the given security incident.<br />
<br />
<br><br />
<br />
===='''4.2 Co-operation, interaction and disclosure of information'''====<br />
<br />
The DOCAPOST ''CSIRT'''s will exchange all necessary information with other CSIRT's as well as with other affected parties if they are involved in the incident or incident response process.<br />
<br />
No incident or vulnerability related information will be given to other persons. French law enforcement personnel requesting information in the course of a criminal investigation will be given the requested information within the limits of the court order and the criminal investigation, if they present a valid court order from a French court.<br />
<br />
<br><br />
<br />
===='''4.3 Communication and authentication'''====<br />
<br />
All e-mails sent to the ''CSIRT'' of DOCAPOST should be signed using PGP. All e-mails containing confidential information should be encrypted and signed using PGP. Information received in encrypted form should not be stored permanently in unencrypted form.<br />
<br />
For other communication, a phone call, postal service, or unencrypted e-mail may be used. The ''CSIRT'' of DOCAPOST supports the Information Sharing Traffic Light Protocol (TLP).<br />
<br />
===<div style="color:#FFFFFF; background-color: #707173">'''5. Services'''</div>===<br />
----<br />
<center>'''This section describes the services the CSIRT DOCAPOST offers'''</center><br />
----<br />
<br />
===='''5.1 Incident response'''====<br />
The team offers the following services :<br />
* Incident analysis<br />
* Incident response support<br />
* Incident response coordination<br />
* Vulnerability response coordination<br />
<br />
<br><br />
<br />
===='''5.2 Proactive activities'''====<br />
The team offers the following services :<br />
* Intrusion detection services<br />
<br />
<br><br />
<br />
===='''5.3 Reactive activities'''====<br />
The team offers the following services :<br />
* Awareness building<br />
<br />
===<div style="color:#FFFFFF; background-color: #707173">'''6. Incident reporting forms'''</div>===<br />
<br />
We do not have an incident reporting form. Please report security incidents via encrypted e-mail to '''csirt@docapost.fr'''<br />
<br />
DOCAPOST CSIRT not have an incident reporting form. Please report security incidents via encrypted e-mail to DOCAPOST CSIRT mail contact<br />
<br />
Incident reports should contain the following information:<br />
<br />
* Incident date and time (including time zone)<br />
* Source IPs, ports, and protocols<br />
* Destination IPs, ports, and protocols<br />
* Incident type <br />
* And any relevant information<br />
<br />
===<div style="color:#FFFFFF; background-color: #707173">'''7. Disclaimers'''</div>===<br />
<br />
This document is provided 'as is' without warranty of any kind, either expressed or implied, including, but not limited to, the implied warranties of merchantability, fitness for a particular purpose, or non-infringement.<br />
<br />
If you notice any mistakes within this document please send a message to us by e-mail. We will try to resolve such issues as soon as possible.<br />
<br />
<btn><br />
Accueil|Light Version|btn-success<br />
</btn></div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Accueil&diff=2682Accueil2020-04-01T21:03:59Z<p>Scarpentier : </p>
<hr />
<div><br />
<br />
<br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 30%; background-color: #EBECEC; text-align: center;"|<br />
[[fichier:DocapostCyberdefense.logo15.textlong.regular.png|150px]]<br />
| style="width: 70%; background-color: #EBECEC; text-align: center;"|<br />
==='''CSIRT DOCAPOSTE'''===<br />
Le CSIRT DOCAPOSTE appelé aussi C.O.S.C (Centre Opérationnel de Sécurité et de Cyberdéfense) est l'équipe opérationnelle chargée de gérer les incidents de sécurité informatique pouvant impacter le Groupe DOCAPOSTE ou ses filiales. Les '''incidents''' présentant un risque '''important ou nécessitant''' une '''réactivité immédiate''' peuvent être transmis aux mêmes coordonnées '''24h/24 et 7j/7'''<br />
|}<br />
<br><br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 10%; background-color: #E0E6F8; text-align:left; color: #046AAF;"|<br />
[[Fichier: Point-info.png|50px|center]]<br />
| style="width: 90%; background-color: #E0E6F8; text-align:left; color: #046AAF;"|<br />
<br><br />
Liens des autorités de certification externes en vigueur sur le Groupe DOCAPOSTE :'''<br />
<br><br />
<br><br />
*'''Root CA Globalsign''' : https://secure.globalsign.net/cacert/Root-R3.crt <br />
*'''GlobalSign RSA OV SSL CA 2018''' : http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt<br />
|}<br />
<br><br />
<btn class="btn-primary"><br />
TLP:WHITE<br />
C0<br />
</btn><br />
<br />
==== <center><div style="color:#FFFFFF; background-color: #046AAF">'''Contact électronique'''</div></center> ====<br />
<br />
Pour toute notification d'un incident de sécurité susceptible d'impliquer le Groupe DOCAPOST ou une filliale du Groupe en tant que source ou cible d'une attaque ou d'une quelconque cybermenace, vous pouvez nous contacter à l'adresse suivante : <br />
<br />
<br />
*[mailto:cert-fr@laposte.fr?Subject=CSIRT%20DOCAPOST%20:%20NATURE%20DE%20L'INCIDENT&body=DECRIVEZ%20L'INCIDENT%20QUE%20VOUS%20AVEZ%20CONSTATEZ. csirt@docapost.fr]<br />
*Sujet : '''CSIRT DOCAPOSTE : Nature de l'incident'''<br />
<br><br />
Pour nous adresser des communications électroniques chiffrées, vous pouvez utiliser<br>la clé PGP CSIRT DOCAPOSTE : '''[https://pgp.docapost.fr/pks/lookup?op=vindex&fingerprint=on&search=0xC10C2EC41540BCF5]''' <br />
<br><br />
*Annuaire de clé PGP DOCAPOSTE : https://pgp.docapost.fr<br />
*Annuaire de clé PGP MIT : https://pgp.mit.edu<br />
<br />
<br><br />
<br />
==== <center><div style="color:#FFFFFF; background-color: #046AAF">'''Adresse postale'''</div></center> ====<br />
<br />
'''CSIRT / COSC DOCAPOSTE'''<br><br />
Direction des Infrastructures et de l’Ingénierie Partagées<br><br />
ACI 1A1-102 - 45/47 boulevard Paul Vaillant Couturier<br><br />
94220 Ivry-sur-Seine<br><br />
<br />
<br />
<btn><br />
RFC2350|Full Version (RFC2350)|btn-success<br />
</btn></div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Accueil&diff=2681Accueil2020-04-01T21:02:02Z<p>Scarpentier : </p>
<hr />
<div><br />
<br />
<br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 30%; background-color: #EBECEC; text-align: center;"|<br />
[[fichier:DocapostCyberdefense.logo15.textlong.regular.png|150px]]<br />
| style="width: 70%; background-color: #EBECEC; text-align: center;"|<br />
==='''CSIRT DOCAPOSTE'''===<br />
Le CSIRT DOCAPOSTE appelé aussi C.O.S.C (Centre Opérationnel de Sécurité et de Cyberdéfense) est l'équipe opérationnelle chargée de gérer les incidents de sécurité informatique pouvant impacter le Groupe DOCAPOSTE ou ses filiales. Les '''incidents''' présentant un risque '''important ou nécessitant''' une '''réactivité immédiate''' peuvent être transmis aux mêmes coordonnées '''24h/24 et 7j/7'''<br />
|}<br />
<br><br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 10%; background-color: #E0E6F8; text-align:left; color: #046AAF;"|<br />
[[Fichier: Point-info.png|50px|center]]<br />
| style="width: 90%; background-color: #E0E6F8; text-align:left; color: #046AAF;"|<br />
<br><br />
Liens des autorités de certification externes en vigueur sur le Groupe DOCAPOSTE :'''<br />
<br><br />
<br><br />
*'''Root CA Globalsign''' : https://secure.globalsign.net/cacert/Root-R3.crt <br />
*'''GlobalSign RSA OV SSL CA 2018''' : http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt<br />
|}<br />
<br><br />
<btn class="btn-primary"><br />
TLP:WHITE<br />
C0<br />
</btn><br />
<br />
==== <center><div style="color:#FFFFFF; background-color: #046AAF">'''Contact électronique'''</div></center> ====<br />
<br />
Pour toute notification d'un incident de sécurité susceptible d'impliquer le Groupe DOCAPOST ou une filliale du Groupe en tant que source ou cible d'une attaque ou d'une quelconque cybermenace, vous pouvez nous contacter à l'adresse suivante : <br />
<br />
<br />
*[mailto:cert-fr@laposte.fr?Subject=CSIRT%20DOCAPOST%20:%20NATURE%20DE%20L'INCIDENT&body=DECRIVEZ%20L'INCIDENT%20QUE%20VOUS%20AVEZ%20CONSTATEZ. csirt@docapost.fr]<br />
*Sujet : '''CSIRT DOCAPOSTE : Nature de l'incident'''<br />
<br><br />
Pour nous adresser des communications électroniques chiffrées, vous pouvez utiliser<br>la clé PGP CSIRT DOCAPOSTE : '''[https://pgp.docapost.fr/pks/lookup?op=vindex&fingerprint=on&search=0xC10C2EC41540BCF5]''' <br />
<br><br />
*Annuaire de clé PGP DOCAPOSTE : https://pgp.docapost.fr<br />
*Annuaire de clé PGP MIT : https://pgp.mit.edu<br />
<br />
<br><br />
<br />
==== <center><div style="color:#FFFFFF; background-color: #046AAF">'''Adresse postale'''</div></center> ====<br />
<br />
'''CERT La Poste'''<br><br />
DISIT/SLCC ('''CSIRT DOCAPOSTE''')<br><br />
5 rue Rene Viviani<br><br />
44263 Nantes cedex 2<br><br />
<br />
<br />
<btn><br />
RFC2350|Full Version (RFC2350)|btn-success<br />
</btn></div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Accueil&diff=2680Accueil2020-04-01T21:00:59Z<p>Scarpentier : </p>
<hr />
<div><br />
<br />
<br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 30%; background-color: #EBECEC; text-align: center;"|<br />
[[fichier:DocapostCyberdefense.logo15.textlong.regular.png|150px]]<br />
| style="width: 70%; background-color: #EBECEC; text-align: center;"|<br />
==='''CSIRT DOCAPOSTE'''===<br />
Le CSIRT DOCAPOSTE appelé aussi C.O.S.C (Centre Opérationnel de Sécurité et de Cyberdéfense) est l'équipe opérationnelle chargée de gérer les incidents de sécurité informatique pouvant impacter le Groupe DOCAPOSTE ou ses filiales. Les '''incidents''' présentant un risque '''important ou nécessitant''' une '''réactivité immédiate''' peuvent être transmis aux mêmes coordonnées '''24h/24 et 7j/7'''<br />
|}<br />
<br><br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 10%; background-color: #E0E6F8; text-align:left; color: #046AAF;"|<br />
[[Fichier: Point-info.png|50px|center]]<br />
| style="width: 90%; background-color: #E0E6F8; text-align:left; color: #046AAF;"|<br />
<br><br />
Liens des autorités de certification externes en vigueur sur le Groupe DOCAPOSTE :'''<br />
<br><br />
<br><br />
*'''Root CA Globalsign''' : https://secure.globalsign.net/cacert/Root-R3.crt <br />
*'''GlobalSign RSA OV SSL CA 2018''' : http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt<br />
|}<br />
<br><br />
<btn class="btn-primary"><br />
TLP:WHITE<br />
C0<br />
</btn><br />
<br />
==== <center><div style="color:#FFFFFF; background-color: #046AAF">'''Contact électronique'''</div></center> ====<br />
<br />
Pour toute notification d'un incident de sécurité susceptible d'impliquer le Groupe DOCAPOST ou une filliale du Groupe en tant que source ou cible d'une attaque ou d'une quelconque cybermenace, vous pouvez nous contacter à l'adresse suivante : <br />
<br />
<br />
*[mailto:cert-fr@laposte.fr?Subject=CSIRT%20DOCAPOST%20:%20NATURE%20DE%20L'INCIDENT&body=DECRIVEZ%20L'INCIDENT%20QUE%20VOUS%20AVEZ%20CONSTATEZ. csirt@docapost.fr]<br />
*Sujet : '''CSIRT DOCAPOSTE : Nature de l'incident'''<br />
<br><br />
Pour nous adresser des communications électroniques chiffrées, vous pouvez utiliser<br>la clé PGP CERT-FR La Poste, identifiée '''[https://pgp.docapost.fr/pks/lookup?op=vindex&fingerprint=on&search=0xC10C2EC41540BCF5''' <br />
<br><br />
*Annuaire de clé PGP DOCAPOSTE : https://pgp.docapost.fr<br />
*Annuaire de clé PGP MIT : https://pgp.mit.edu<br />
<br />
<br><br />
<br />
==== <center><div style="color:#FFFFFF; background-color: #046AAF">'''Adresse postale'''</div></center> ====<br />
<br />
'''CERT La Poste'''<br><br />
DISIT/SLCC ('''CSIRT DOCAPOSTE''')<br><br />
5 rue Rene Viviani<br><br />
44263 Nantes cedex 2<br><br />
<br />
<br />
<btn><br />
RFC2350|Full Version (RFC2350)|btn-success<br />
</btn></div>Scarpentierhttps://csirt.docapost.fr/index.php?title=RFC2350&diff=2679RFC23502020-04-01T20:55:51Z<p>Scarpentier : </p>
<hr />
<div><btn class="btn-primary"><br />
TLP:WHITE<br />
C0<br />
</btn><br />
=== <center><div style="color:#FFFFFF; background-color: #009EE0">'''Description of CSIRT DOCAPOST'''</div></center> ===<br />
<br />
===<div style="color:#FFFFFF; background-color: #707173">'''1. Document Information'''</div>===<br />
<div style="color:#194466;"><br />
----<br />
<center>'''This document contains a description of CSIRT DOCAPOST according to RFC 2350. It provides information about the Computer Security Incident Response Team, how to contact the team, and describes its responsibilities and the services offered by the CSIRT DOCAPOST.'''</center><br />
----<br />
<br />
<br><br />
===='''1.1 Document revision'''====<br />
* This version has been updated at '''10/05/2018 13:35'''<br />
* This original version was published at '''12/02/2018 14:53'''<br />
<br><br />
<br />
===='''1.2 Distribution list for notifications'''====<br />
<br />
* There is no distribution list for notifications.<br />
<br><br />
<br />
===='''1.3 Locations where this document may be found'''====<br />
<br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 10%; background-color: white; text-align: left;"|<br />
[[Fichier:QRCode CSIRT URL RFC2350.png.png|100px]]<br />
| style="width: 70%; background-color: white;"|<br />
The current version of this document can be found at:<br />
https://csirt.docapost.fr/RFC2350_CSIRT_DOCAPOST.pdf<br />
<br />
|}<br />
<br />
===='''1.4 Document authenticity'''====<br />
<br />
* This document can be retrieved from only this site, using TLS/SSL also signed by the PGP certificate of ''CSIRT'' DOCAPOST.<br />
<br />
The signature of the file : <br />
https://csirt.docapost.fr/RFC2350_CSIRT_DOCAPOST.pdf.sig<br />
<br />
===<div style="color:#FFFFFF; background-color: #707173">'''2. Contact information'''</div>===<br />
----<br />
<center>'''This section describes how to contact the CSIRT DOCAPOST'''</center><br />
----<br />
<br />
<br><br />
===='''2.1 Name of the Team'''====<br />
<br />
* '''CSIRT DOCAPOST (C.O.S.C: Centre Opérationnel de Sécurité et de Cyberdéfense)'''<br />
* Short name : '''CSIRT-DOCAPOST'''<br />
<br><br />
<br />
The DOCAPOST-CSIRT Team's is supported by :<br />
<br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 10%; background-color: white; text-align: left;"|<br />
[[Fichier: Logo-laposte.png|130px]]<br />
| style="width: 60%; background-color: white;"|<br />
* '''Computer Emergency Response Team - La Poste'''<br />
* Short name : '''CERT La Poste'''<br />
* Accredited since 27 Mar 2015<br />
| style="width: 45%; background-color: white;"|<br />
[[Fichier: Ti-logo.jpg|200px]]<br />
|}<br />
<br><br />
<br />
===='''2.2 Address'''====<br />
<br />
'''CERT La Poste'''<br />
'''DISIT/SLCC (CISRT-DOCAPOST)'''<br />
5 rue Rene Viviani<br />
44263 Nantes cedex 2<br />
<br><br />
<br />
===='''2.3 Time Zone'''====<br />
<br />
*CEST / Central European Summer Time<br />
<br><br />
<br />
===='''2.4 Telephone Number'''====<br />
<br />
<br />
<br />
<br><br />
<br />
===='''2.5 Facsimile Number'''====<br />
<br />
[tel:+33234092746| Fax : +33 (0) 234 092 746]<br />
<br />
<br><br />
<br />
===='''2.6 Other Telecommunication'''====<br />
*None<br />
<br><br />
<br />
===='''2.7 Electronic Mail Address'''====<br />
<br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 10%; background-color: white; text-align: left;"|<br />
[[Fichier: 525949434995.png|100px]]<br />
| style="width: 70%; background-color: white;"|<br />
'''cert-fr[@]laposte.fr'''<br />
'''Sujet : [CSIRT DOCAPOST] : Incident description'''<br />
<br />
|}<br />
<br><br />
<br />
===='''2.8 Public key's and encryption information'''====<br />
The ''CSIRT-DOCAPOST'' current PGP key may be obtained by sending a request by mail for that at '''cert-fr[@]laposte.fr''' or is avaible on :<br />
<br><br />
*[https://pgp.docapost.fr/pks/lookup?op=get&search=0x6F6CB3F6878DA63E PGP DOCAPOST directory]<br />
*[https://pgp.mit.edu/pks/lookup?op=get&search=0x6F6CB3F6878DA63E PGP MIT directory]<br />
<br><br />
Key ID : '''0xE93BA775'''<br />
Fingerprint : '''5209 9E34 2D35 ADAF 3CEF 026C 4E8F 0E31 E93B A775'''<br />
<br />
<br><br />
<br />
===='''2.9 Team members'''====<br />
<br />
* The team consists of five people. <br />
* The team consists of IT security analysts. <br />
* No personal information is indicated in this document <br />
<br><br />
<br />
===='''2.10 Other information'''====<br />
<br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 10%; background-color: white; text-align: left;"|<br />
[[Fichier:QRCode CSIRT URL.png|100px]]<br />
| style="width: 70%; background-color: white;"|<br />
* The DOCAPOST ''Computer Security Incident Response Team'' portal is available at : https://csirt.docapost.fr<br />
|}<br />
<br />
===='''2.11 Points of customer contact'''====<br />
The ''CSIRT'' of DOCAPOST prefers to receive incident reports via e-mail. Please use our cryptographic keys above to ensure integrity and confidentiality. ''CSIRT'' DOCAPOST's hours of operation are restricted to regular business hours <br />
<br><br />
'''07:00-20:00''' '''Monday to Friday''', all year long.<br />
<br />
===<div style="color:#FFFFFF; background-color: #707173">'''3. Charter'''</div>===<br />
----<br />
<center>'''Within this section the CSIRT DOCAPOST mandate is described.'''</center><br />
----<br />
<br><br />
<br />
===='''3.1 Mission statement'''====<br />
The ''CSIRT'' of DOCAPOST's mission is to coordinate and investigate IT security incident response for the Group DOCAPOST. The ''CSIRT'' of DOCAPOST will investigate any security incident that may involve a '''''DOCAPOST Group subsidiarie''''' or '''''DOCAPOST''''' as a source or target of an attack or any cyber-threat.<br />
<br />
<br><br />
<br />
===='''3.2 Constituency'''====<br />
Our constituency are composed of DOCAPOST Group and all subsidiaries.<br />
<br />
<br><br />
<br />
===='''3.3 Sponsorship and/or affiliation'''====<br />
The ''CSIRT'' of DOCAPOST is the Computer Security Incident Response Team (CSIRT) for the Group DOCAPOST. His funding is provided by the DOCAPOST Group.<br />
<br />
<br><br />
<br />
===='''3.4 Authority'''====<br />
The ''CSIRT'' of DOCAPOST coordinate security incidents concerning our constituency.<br />
<br />
===<div style="color:#FFFFFF; background-color: #707173">'''4. Policies'''</div>===<br />
----<br />
<center>'''This section describes the policies of DOCAPOST CSIRT '''</center><br />
----<br />
<br />
===='''4.1 Types of incidents and level of support'''====<br />
The ''CSIRT'' of DOCAPOST addresses all kinds of security incidents which occur, or threaten to occur, within its constituency.<br />
<br />
The level of support depends on the type and severity of the given security incident.<br />
<br />
<br><br />
<br />
===='''4.2 Co-operation, interaction and disclosure of information'''====<br />
<br />
The DOCAPOST ''CSIRT'''s will exchange all necessary information with other CSIRT's as well as with other affected parties if they are involved in the incident or incident response process.<br />
<br />
No incident or vulnerability related information will be given to other persons. French law enforcement personnel requesting information in the course of a criminal investigation will be given the requested information within the limits of the court order and the criminal investigation, if they present a valid court order from a French court.<br />
<br />
<br><br />
<br />
===='''4.3 Communication and authentication'''====<br />
<br />
All e-mails sent to the ''CSIRT'' of DOCAPOST should be signed using PGP. All e-mails containing confidential information should be encrypted and signed using PGP. Information received in encrypted form should not be stored permanently in unencrypted form.<br />
<br />
For other communication, a phone call, postal service, or unencrypted e-mail may be used. The ''CSIRT'' of DOCAPOST supports the Information Sharing Traffic Light Protocol (TLP).<br />
<br />
===<div style="color:#FFFFFF; background-color: #707173">'''5. Services'''</div>===<br />
----<br />
<center>'''This section describes the services the CSIRT DOCAPOST offers'''</center><br />
----<br />
<br />
===='''5.1 Incident response'''====<br />
The team offers the following services :<br />
* Incident analysis<br />
* Incident response support<br />
* Incident response coordination<br />
* Vulnerability response coordination<br />
<br />
<br><br />
<br />
===='''5.2 Proactive activities'''====<br />
The team offers the following services :<br />
* Intrusion detection services<br />
<br />
<br><br />
<br />
===='''5.3 Reactive activities'''====<br />
The team offers the following services :<br />
* Awareness building<br />
<br />
===<div style="color:#FFFFFF; background-color: #707173">'''6. Incident reporting forms'''</div>===<br />
<br />
We do not have an incident reporting form. Please report security incidents via encrypted e-mail to '''cisrt@docapost.fr'''<br />
<br />
DOCAPOST CSIRT not have an incident reporting form. Please report security incidents via encrypted e-mail to DOCAPOST CSIRT mail contact<br />
<br />
Incident reports should contain the following information:<br />
<br />
* Incident date and time (including time zone)<br />
* Source IPs, ports, and protocols<br />
* Destination IPs, ports, and protocols<br />
* Incident type <br />
* And any relevant information<br />
<br />
===<div style="color:#FFFFFF; background-color: #707173">'''7. Disclaimers'''</div>===<br />
<br />
This document is provided 'as is' without warranty of any kind, either expressed or implied, including, but not limited to, the implied warranties of merchantability, fitness for a particular purpose, or non-infringement.<br />
<br />
If you notice any mistakes within this document please send a message to us by e-mail. We will try to resolve such issues as soon as possible.<br />
<br />
<btn><br />
Accueil|Light Version|btn-success<br />
</btn></div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Accueil&diff=2678Accueil2020-04-01T20:55:03Z<p>Scarpentier : </p>
<hr />
<div><br />
<br />
<br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 30%; background-color: #EBECEC; text-align: center;"|<br />
[[fichier:DocapostCyberdefense.logo15.textlong.regular.png|150px]]<br />
| style="width: 70%; background-color: #EBECEC; text-align: center;"|<br />
==='''CSIRT DOCAPOSTE'''===<br />
Le CSIRT DOCAPOSTE appelé aussi C.O.S.C (Centre Opérationnel de Sécurité et de Cyberdéfense) est l'équipe opérationnelle chargée de gérer les incidents de sécurité informatique pouvant impacter le Groupe DOCAPOSTE ou ses filiales. Les '''incidents''' présentant un risque '''important ou nécessitant''' une '''réactivité immédiate''' peuvent être transmis aux mêmes coordonnées '''24h/24 et 7j/7'''<br />
|}<br />
<br><br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 10%; background-color: #E0E6F8; text-align:left; color: #046AAF;"|<br />
[[Fichier: Point-info.png|50px|center]]<br />
| style="width: 90%; background-color: #E0E6F8; text-align:left; color: #046AAF;"|<br />
<br><br />
Liens des autorités de certification externes en vigueur sur le Groupe DOCAPOSTE :'''<br />
<br><br />
<br><br />
*'''Root CA Globalsign''' : https://secure.globalsign.net/cacert/Root-R3.crt <br />
*'''GlobalSign RSA OV SSL CA 2018''' : http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt<br />
|}<br />
<br><br />
<btn class="btn-primary"><br />
TLP:WHITE<br />
C0<br />
</btn><br />
<br />
==== <center><div style="color:#FFFFFF; background-color: #046AAF">'''Contact électronique'''</div></center> ====<br />
<br />
Pour toute notification d'un incident de sécurité susceptible d'impliquer le Groupe DOCAPOST ou une filliale du Groupe en tant que source ou cible d'une attaque ou d'une quelconque cybermenace, vous pouvez nous contacter à l'adresse suivante : <br />
<br />
<br />
*[mailto:cert-fr@laposte.fr?Subject=CSIRT%20DOCAPOST%20:%20NATURE%20DE%20L'INCIDENT&body=DECRIVEZ%20L'INCIDENT%20QUE%20VOUS%20AVEZ%20CONSTATEZ. cert-fr@laposte.fr]<br />
*Sujet : '''CSIRT DOCAPOSTE : Nature de l'incident'''<br />
<br><br />
Pour nous adresser des communications électroniques chiffrées, vous pouvez utiliser<br>la clé PGP CERT-FR La Poste, identifiée '''[https://pgp.docapost.fr/pks/lookup?op=vindex&fingerprint=on&search=0x4E8F0E31E93BA775 0xE93BA775]''' ayant pour empreinte<br>'''[https://pgp.docapost.fr/pks/lookup?op=vindex&fingerprint=on&search=0x4E8F0E31E93BA775 5209 9E34 2D35 ADAF 3CEF 026C 4E8F 0E31 E93B A775]'''.<br />
<br><br />
*Annuaire de clé PGP DOCAPOSTE : https://pgp.docapost.fr<br />
*Annuaire de clé PGP MIT : https://pgp.mit.edu<br />
<br />
<br><br />
<br />
==== <center><div style="color:#FFFFFF; background-color: #046AAF">'''Adresse postale'''</div></center> ====<br />
<br />
'''CERT La Poste'''<br><br />
DISIT/SLCC ('''CSIRT DOCAPOSTE''')<br><br />
5 rue Rene Viviani<br><br />
44263 Nantes cedex 2<br><br />
<br />
<br />
<btn><br />
RFC2350|Full Version (RFC2350)|btn-success<br />
</btn></div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Accueil&diff=2677Accueil2020-04-01T20:54:21Z<p>Scarpentier : </p>
<hr />
<div><br />
<br />
<br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 30%; background-color: #EBECEC; text-align: center;"|<br />
[[fichier:DocapostCyberdefense.logo15.textlong.regular.png|150px]]<br />
| style="width: 70%; background-color: #EBECEC; text-align: center;"|<br />
==='''CSIRT DOCAPOSTE'''===<br />
Le CSIRT DOCAPOSTE appelé aussi C.O.S.C (Centre Opérationnel de Sécurité et de Cyberdéfense) est l'équipe opérationnelle chargée de gérer les incidents de sécurité informatique pouvant impacter le Groupe DOCAPOSTE ou ses filiales. Les '''incidents''' présentant un risque '''important ou nécessitant''' une '''réactivité immédiate''' peuvent être transmis aux mêmes coordonnées '''24h/24 et 7j/7'''<br />
|}<br />
<br><br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 10%; background-color: #E0E6F8; text-align:left; color: #046AAF;"|<br />
[[Fichier: Point-info.png|50px|center]]<br />
| style="width: 90%; background-color: #E0E6F8; text-align:left; color: #046AAF;"|<br />
<br><br />
Liens des autorités de certification externes en vigueur sur le Groupe DOCAPOSTE :'''<br />
<br><br />
<br><br />
*'''Root CA Globalsign''' : https://secure.globalsign.net/cacert/Root-R3.crt <br />
*'''GlobalSign RSA OV SSL CA 2018''' : http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt<br />
|}<br />
<br><br />
<btn class="btn-primary"><br />
TLP:WHITE<br />
C0<br />
</btn><br />
<br />
==== <center><div style="color:#FFFFFF; background-color: #046AAF">'''Contact électronique'''</div></center> ====<br />
<br />
Pour toute notification d'un incident de sécurité susceptible d'impliquer le Groupe DOCAPOST ou une filliale du Groupe en tant que source ou cible d'une attaque ou d'une quelconque cybermenace, vous pouvez nous contacter à l'adresse suivante : <br />
<br />
<br />
*[mailto:cert-fr@laposte.fr?Subject=CSIRT%20DOCAPOST%20:%20NATURE%20DE%20L'INCIDENT&body=DECRIVEZ%20L'INCIDENT%20QUE%20VOUS%20AVEZ%20CONSTATEZ. cert-fr@laposte.fr]<br />
*Sujet : '''CSIRT DOCAPOSTE : Nature de l'incident'''<br />
<br><br />
Pour nous adresser des communications électroniques chiffrées, vous pouvez utiliser<br>la clé PGP CERT-FR La Poste, identifiée '''[https://pgp.docapost.fr/pks/lookup?op=vindex&fingerprint=on&search=0x4E8F0E31E93BA775 0xE93BA775]''' ayant pour empreinte<br>'''[https://pgp.docapost.fr/pks/lookup?op=vindex&fingerprint=on&search=0x4E8F0E31E93BA775 5209 9E34 2D35 ADAF 3CEF 026C 4E8F 0E31 E93B A775]'''.<br />
<br><br />
*Annuaire de clé PGP DOCAPOSTE : https://pgp.docapost.fr<br />
*Annuaire de clé PGP MIT : https://pgp.mit.edu<br />
<br />
<br><br />
<br />
'''INFORMATION''' : Veuillez indiquer que vous appelez pour un incident DOCAPOSTE<br />
<br><br />
<br />
==== <center><div style="color:#FFFFFF; background-color: #046AAF">'''Adresse postale'''</div></center> ====<br />
<br />
'''CERT La Poste'''<br><br />
DISIT/SLCC ('''CSIRT DOCAPOSTE''')<br><br />
5 rue Rene Viviani<br><br />
44263 Nantes cedex 2<br><br />
<br />
<br />
<btn><br />
RFC2350|Full Version (RFC2350)|btn-success<br />
</btn></div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Fichier:Login.png&diff=2676Fichier:Login.png2020-02-24T20:24:08Z<p>Scarpentier : </p>
<hr />
<div></div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Information_de_s%C3%A9curit%C3%A9_ANTS&diff=2674Information de sécurité ANTS2019-11-13T20:13:02Z<p>Scarpentier : </p>
<hr />
<div><br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 30%; background-color: #EBECEC; text-align: center;"|<br />
[[fichier:CSIRT.red.png|190px]]<br />
| style="width: 70%; background-color: #EBECEC; text-align: left;"|<br />
<span style="color:#000000"><br><br>'''Votre connexion vient d'être bloquée à destination des services de l'Agence Nationale des Titres Sécurisés.'''</span><br />
<span style="color: #000000">'''Si vous pensez que cette restriction n'est pas justifiée, veuillez nous écrire par mail à : <br><span style="color: #cc0000<br />
">[mailto:celluleweb-ants@interieur.gouv.fr?Subject=RWD_COSC_DCP%20-%20Accès%20refusé%20sur%20une%20ressource%20:%20{{#urlget:_event_transid}}&body=Veuillez%20indiquer%20la%20raison%20de%20l'%20accès <br> celluleweb-ants@interieur.gouv.fr]<span style="color:#000000">'''</span><br />
<br><br />
<br><br />
====Informations techniques :====<br />
*<span style="color: #000000">Support ID :</span> <span style="color: #FF5657">'''{{#urlget:_event_transid}}'''</span><br />
<br><br />
|}</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Information_de_s%C3%A9curit%C3%A9_ANTS&diff=2673Information de sécurité ANTS2019-11-13T20:12:41Z<p>Scarpentier : </p>
<hr />
<div><br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 30%; background-color: #EBECEC; text-align: center;"|<br />
[[fichier:CSIRT.red.png|190px]]<br />
| style="width: 70%; background-color: #EBECEC; text-align: left;"|<br />
<span style="color:#000000"><br><br>'''Votre connexion vient d'être bloquée à destination des services de l'Agence Nationale des Titres Sécurisés.'''</span><br />
<span style="color: #000000">'''Si vous pensez que cette restriction n'est pas justifiée, veuillez nous écrire par mail à : <br><span style="color: #cc0000<br />
">[mailto:celluleweb-ants@interieur.gouv.fr?Subject=RWD_COSC_DCP%20:%20Accès%20refusé%20sur%20une%20ressource%20:%20{{#urlget:_event_transid}}&body=Veuillez%20indiquer%20la%20raison%20de%20l'%20accès <br> celluleweb-ants@interieur.gouv.fr]<span style="color:#000000">'''</span><br />
<br><br />
<br><br />
====Informations techniques :====<br />
*<span style="color: #000000">Support ID :</span> <span style="color: #FF5657">'''{{#urlget:_event_transid}}'''</span><br />
<br><br />
|}</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Information_de_s%C3%A9curit%C3%A9_ANTS&diff=2672Information de sécurité ANTS2019-11-13T20:12:15Z<p>Scarpentier : </p>
<hr />
<div><br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 30%; background-color: #EBECEC; text-align: center;"|<br />
[[fichier:CSIRT.red.png|190px]]<br />
| style="width: 70%; background-color: #EBECEC; text-align: left;"|<br />
<span style="color:#000000"><br><br>'''Votre connexion vient d'être bloquée à destination des services de l'Agence Nationale des Titres Sécurisés.'''</span><br />
<span style="color: #000000">'''Si vous pensez que cette restriction n'est pas justifiée, veuillez nous écrire par mail à : <br><span style="color: #cc0000<br />
">[mailto:celluleweb-ants@interieur.gouv.fr?Subject=\[RWD_COSC_DCP\]%20:%20Accès%20refusé%20sur%20une%20ressource%20:%20{{#urlget:_event_transid}}&body=Veuillez%20indiquer%20la%20raison%20de%20l'%20accès <br> celluleweb-ants@interieur.gouv.fr]<span style="color:#000000">'''</span><br />
<br><br />
<br><br />
====Informations techniques :====<br />
*<span style="color: #000000">Support ID :</span> <span style="color: #FF5657">'''{{#urlget:_event_transid}}'''</span><br />
<br><br />
|}</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Information_de_s%C3%A9curit%C3%A9_ANTS&diff=2671Information de sécurité ANTS2019-11-13T20:11:47Z<p>Scarpentier : </p>
<hr />
<div><br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 30%; background-color: #EBECEC; text-align: center;"|<br />
[[fichier:CSIRT.red.png|190px]]<br />
| style="width: 70%; background-color: #EBECEC; text-align: left;"|<br />
<span style="color:#000000"><br><br>'''Votre connexion vient d'être bloquée à destination des services de l'Agence Nationale des Titres Sécurisés.'''</span><br />
<span style="color: #000000">'''Si vous pensez que cette restriction n'est pas justifiée, veuillez nous écrire par mail à : <br><span style="color: #cc0000<br />
">[mailto:celluleweb-ants@interieur.gouv.fr?Subject=[RWD_COSC_DCP]%20:%20Accès%20refusé%20sur%20une%20ressource%20:%20{{#urlget:_event_transid}}&body=Veuillez%20indiquer%20la%20raison%20de%20l'%20accès <br> celluleweb-ants@interieur.gouv.fr]<span style="color:#000000">'''</span><br />
<br><br />
<br><br />
====Informations techniques :====<br />
*<span style="color: #000000">Support ID :</span> <span style="color: #FF5657">'''{{#urlget:_event_transid}}'''</span><br />
<br><br />
|}</div>Scarpentierhttps://csirt.docapost.fr/index.php?title=Information_de_s%C3%A9curit%C3%A9_ANTS&diff=2670Information de sécurité ANTS2019-11-13T20:11:15Z<p>Scarpentier : </p>
<hr />
<div><br />
{| style="color: black; background-color: #ffffcc; width: 100%;"<br />
| style="width: 30%; background-color: #EBECEC; text-align: center;"|<br />
[[fichier:CSIRT.red.png|190px]]<br />
| style="width: 70%; background-color: #EBECEC; text-align: left;"|<br />
<span style="color:#000000"><br><br>'''Votre connexion vient d'être bloquée à destination des services de l'Agence Nationale des Titres Sécurisés.'''</span><br />
<span style="color: #000000">'''Si vous pensez que cette restriction n'est pas justifiée, veuillez nous écrire par mail à : <br><span style="color: #cc0000<br />
">[mailto:celluleweb-ants@interieur.gouv.fr?Subject=RWD_COSC_DCP:Accès%20refusé%20sur%20une%20ressource%20:%20{{#urlget:_event_transid}}&body=Veuillez%20indiquer%20la%20raison%20de%20l'%20accès <br> celluleweb-ants@interieur.gouv.fr]<span style="color:#000000">'''</span><br />
<br><br />
<br><br />
====Informations techniques :====<br />
*<span style="color: #000000">Support ID :</span> <span style="color: #FF5657">'''{{#urlget:_event_transid}}'''</span><br />
<br><br />
|}</div>Scarpentier