Full Disclosure mailing list archives

Re: security at .edus

From: "Brian Eaton" <eaton.lists () gmail com>
Date: Sun, 23 Apr 2006 13:50:53 -0400

On 4/23/06, Randal T. Rioux <randy () procyonlabs com> wrote:

I suspect the anonymous educational institution in question is hardly
the only vulnerable site out there.  Universities tend to be fairly
decentralized places, where academic freedom can count for a lot more
than a secure network.  Plus a university network has fewer secrets to
protect than a business.


Tell that to the DoD sponsored research labs within many universities.


True 'dat.

And it's probably worth adding the medical school and some of the
social sciences departments to the list.  Depending on the research
being done, they have access to some fairly large databases with lots
of personal information.  HIPPA ought to be making that a bit better.

Regards,
Brian

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

security at .edus Brian Eaton (Apr 22)
- Re: security at .edus Randal T. Rioux (Apr 22)
  - Re: security at .edus Brian Eaton (Apr 23)
- Re: security at .edus Fixer (Apr 23)
  - Re: security at .edus Dave "No, not that one" Korn (Apr 23)
- Re: security at .edus Gadi Evron (Apr 23)