| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <444E59B4.7040401@utdallas.edu> Date: Tue Apr 25 18:18:00 2006 From: pauls at utdallas.edu (Paul Schmehl) Subject: Re: Who Do I Contact? Barrie Dempster wrote: > On Sun, 2006-04-23 at 18:45 -0500, Paul Schmehl wrote: >> Depending upon which Dean you're referring to, this could little to no good >> at all. The Dean might even think there's nothing wrong with SSNs being >> exposed. > > In that case you could cite some *very* recent precedent on the matter: > http://www.statesman.com/news/content/news/stories/local/04/24utcomputers.html > http://tinyurl.com/h55y6 > I hate to tell you this, but even that wouldn't make a difference to some Deans. I have had profs and Deans complain because we wouldn't allow them to just put a hacked machine back online. They think that somehow, once we've discovered a breach, it automagically goes away (or, more likely, it's not as important as the work that server was doing.) > > So was the above your responsibility then Paul ? > ;-P > If you look at my sig you should be able to figure out I'm not at the school cited in that article. (And that's not to say that we're any better than they are or that we'd never be hacked like that.) -- Paul Schmehl (pauls@...allas.edu) Adjunct Information Security Officer The University of Texas at Dallas http://www.utdallas.edu/ir/security/ -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 5007 bytes Desc: S/MIME Cryptographic Signature Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20060425/36c74d8e/smime.bin
Powered by blists - more mailing lists