lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Date: Sun Apr 23 00:13:58 2006
From: eaton.lists at gmail.com (Brian Eaton)
Subject: security at .edus

On 4/22/06, Sol Invictus <sol@...eyoubeentested.org> wrote:
> What you don't realize is that just by posting here that an Educational Institution
> is vulnerable to this,  Some Readers (not me) might already be scanning for
> web vulnerabilities at these sites across the US.

I suspect the anonymous educational institution in question is hardly
the only vulnerable site out there.  Universities tend to be fairly
decentralized places, where academic freedom can count for a lot more
than a secure network.  Plus a university network has fewer secrets to
protect than a business.

One would hope that the registrar's office would be an exception to
the rule, but apparently not.

Regards,
Brian

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ