| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sun Mar 12 18:50:06 2006 From: system_outage at yahoo.com (SO SECURITY RESEARCH INSTITUTE) Subject: Yahoo security give blogger the thumbs up Dear All, Do you, uh, Yahoo? It appears no action will be taken against a Yahoo employee who disclosed confidential corporate side security information (with screenshots) to his weblog. This obviously gives the green light for anyone at Yahoo to do the same in the future. Why have a Yahoo policy if its not going to be inforced? Regardless of the security value of the blog entry, a clear breach of the confidentiality agreement between Yahoo and ADP has been made. Yahoo's response was "Jeremy is Jeremy, he can blog about anything he wants." Making it sound like if you're a celebrity Yahoo blogger then you can walk all over company policy. ADP were unavailable for comment at time of this message being submitted to Full-Disclosure mailing list. http://tinyurl.com/plqt3 SO SECURITY Beyond The Human Firewall Research --------------------------------- Yahoo! Mail Use Photomail to share photos without annoying attachments. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20060312/d8485707/attachment.html
Powered by blists - more mailing lists