| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sun Apr 23 19:46:56 2006 From: crypticmauler at linuxmail.org (CrYpTiC MauleR) Subject: Re: Who Do I Contact? My parents do not work there, I never said they do. Did it ever occur to you that the school would have stored parent info from financial aid? also I do not plan on revealing any SSNs to anyone even to make a point. That will definetly get me jail time even if its in good faith. > ----- Original Message ----- > From: "Dave "No, not that one" Korn" <davek_throwaway@...mail.com> > To: full-disclosure@...ts.grok.org.uk > Subject: [Full-disclosure] Re: Who Do I Contact? > Date: Sun, 23 Apr 2006 15:11:40 +0100 > > > Valdis.Kletnieks@...edu wrote: > > > The number of US universities big enough to have 7,000 incoming students > > is extremely limited. *that* little tidbit probably tells us more than > > the fact his traceroute ends in Kansas..... > > Plus he just gave away that his parents work there, so we can cut it down > to those where we can automatically find surname matches between the staff > directory and the pupils list .... > > CM, my suggestion would be to phone up the Dean/Principal while he's in > the middle of his sunday lunch and read out his SSN to him and tell him how > he can go to his computer and see it for himself. Do it from a phonebox, > tell him he really needs to bang heads together in the IT department *now*, > tell him you haven't messed or tampered with it in any way and you just want > it fixed because your own data is in there too (don't mention the parents!) > then say you're sorry but you hope he'll understand why you don't want to > identify yourself and ring off. > > Then when you go to school on Monday you can enjoy the looks of pain on > the faces of the IT staff who've been up all night fixing the hole because > the Dean's torn them all a second one ... ;-D > > > cheers, > DaveK > -- > Can't think of a witty .sigline today.... > > > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -- _______________________________________________ Check out the latest SMS services @ http://www.linuxmail.org This allows you to send and receive SMS through your mailbox. Powered by Outblaze
Powered by blists - more mailing lists