Educause Security Discussion mailing list archives

Re: Directory Trolling

From: "Hunt,Keith A" <keith () UAKRON EDU>
Date: Tue, 15 Jun 2010 13:10:59 -0400

We use scripting that renders the email address on the fly so it is obfuscated for automated crawlers.

Keith Hunt  330.972.7968  keith () uakron edu<mailto:keith () uakron edu>
Internet & Server Systems
The University of Akron

From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Myers, 
Julie
Sent: Tuesday, June 15, 2010 12:48 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Directory Trolling

We are also considering a captcha - our other thought was making the search result an image but that was less desirable.

Julie Myers
Chief Information Security Officer
University of Rochester
w:(585) 273-1804
c: (585) 208-0939

________________________________
From: The EDUCAUSE Security Constituent Group Listserv
To: SECURITY () LISTSERV EDUCAUSE EDU
Sent: Tue Jun 15 12:43:13 2010
Subject: [SECURITY] Directory Trolling
Folks,

Did any of you encountered Directory Trolling? Any thoughts on how to prevent this? In the Corporate world,  we don’t 
expose directories at all, so it was never a big issue! We are planning to have Captcha, but it might be a usability 
thing.

Any help, greatly appreciated.

Thanks.

Ravi Kumar, CISSP
Middleware Manager
ITS, Enterprise Infra Services
Boston College - St. Clement's

P: 617.552.3382

Current thread:

Directory Trolling Ravi Kumar (Jun 15)
- Re: Directory Trolling Ken Connelly (Jun 15)
  - Re: Directory Trolling Daniel Bennett (Jun 15)
    - Re: Directory Trolling Laverty, Patrick (Jun 15)
  - Re: Directory Trolling Hauber, Wayne [ITSEC] (Jun 15)
    - Re: Directory Trolling Julian Y. Koh (Jun 15)
- Re: Directory Trolling Valdis Kletnieks (Jun 15)
- <Possible follow-ups>
- Re: Directory Trolling Myers, Julie (Jun 15)
  - Re: Directory Trolling Hunt,Keith A (Jun 15)