Full Disclosure mailing list archives

Re: security at .edus

From: "Randal T. Rioux" <randy () procyonlabs com>
Date: Sun, 23 Apr 2006 02:36:52 -0400

-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

Brian Eaton wrote:

On 4/22/06, Sol Invictus <sol () haveyoubeentested org> wrote:

What you don't realize is that just by posting here that an Educational Institution
is vulnerable to this,  Some Readers (not me) might already be scanning for
web vulnerabilities at these sites across the US.


I suspect the anonymous educational institution in question is hardly
the only vulnerable site out there.  Universities tend to be fairly
decentralized places, where academic freedom can count for a lot more
than a secure network.  Plus a university network has fewer secrets to
protect than a business.


Tell that to the DoD sponsored research labs within many universities.

Randy

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFESyCERrGMQdCNGUERA7iZAJ43URV3IhCRIb0b+6LDoBg5zi+dqACdFlI7
88fAbReRVK534l0ZLqlsx6U=
=LrNi
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

security at .edus Brian Eaton (Apr 22)
- Re: security at .edus Randal T. Rioux (Apr 22)
  - Re: security at .edus Brian Eaton (Apr 23)
- Re: security at .edus Fixer (Apr 23)
  - Re: security at .edus Dave "No, not that one" Korn (Apr 23)
- Re: security at .edus Gadi Evron (Apr 23)