Educause Security Discussion mailing list archives

Re: Vendor Participation on List and Proper Identification

From: "Parker, Ron" <Ron.Parker () BRAZOSPORT EDU>
Date: Tue, 2 Aug 2005 12:21:34 -0500

Mr. "Harry A'Hole" here, posting from his anonymous community network
account, just made my original point perfectly.

I'd like to see the list leaders chime in at this point? Can we please
get some sort of screening process set up for who can be on these lists?
All I want is for some responsible person to look at requests to join
the list and verify that the person making the request has any business
being here. If you want to allow all .edu domains by default and only
deal with others, fine. I'd really like to have the list archives closed
or sanitized as well. I don't see how we can carry on productive,
professional conversations in this venue with the amount of noise that
is in this system currently. 

--
Ron Parker, Director of Information Technology, Brazosport College

-----Original Message-----
From: Harry A'Hole [mailto:madman () MYEASTSIDE COM] 
Sent: Friday, July 29, 2005 4:03 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Vendor Participation on List and 
Proper Identification

Jason,

It's hard to complain to educase "protecting its members" 
when you send your email with your name, title, school and 
department, phone, fax and email address at the bottom.  A 
group list by definition will send your message to everyone 
on the list, and the list doesn't require people to pass a 
security test in order to join. One odd bit is that educase 
does send the email from your email, display as 
A00JER2 () WPO CSO NIU EDU, and educase probably should avoid 
leaking that.

Harry

Jason Richardson wrote:

As troubling to me were the e-mail AND phone call that I

received from

the labor union representing hotel service employees who are

striking to

force a new contract with hotels in San Francisco.  Apparently, by
becoming a member of Educause I exposed my contact info to this union
who has been spamming me to boycott the hotels.  I called Educause to
complain and they apologized (as they have to many others who called)
and removed me from their public directory.  I have not had

this problem

by becoming a member of other professional orgs.  IMO,

Educause needs to

do a better job of protecting its members.

---
Jason Richardson
Manager, IT Security and Client Development
Enterprise Systems Support
Northern Illinois University
Voice: 815-753-1678
Fax: 815-753-2555
jasrich () niu edu

Current thread:

Re: Vendor Participation on List and Proper Identification, (continued)
- Re: Vendor Participation on List and Proper Identification Dave Koontz (Jul 28)
- Re: Vendor Participation on List and Proper Identification Sarah Stevens (Jul 28)
- Re: Vendor Participation on List and Proper Identification Tom Bossie (Jul 29)
- Re: Vendor Participation on List and Proper Identification Dennis Meharchand, CEO Valt.x (Jul 29)
- Re: Vendor Participation on List and Proper Identification Theresa M Rowe (Jul 29)
- Re: Vendor Participation on List and Proper Identification Jimmy L. Fikes (Jul 29)
- Re: Vendor Participation on List and Proper Identification John Nunnally (Jul 29)
- Re: Vendor Participation on List and Proper Identification Jason Richardson (Jul 29)
- Re: Vendor Participation on List and Proper Identification Harry A'Hole (Jul 29)
- Re: Vendor Participation on List and Proper Identification Jason Richardson (Jul 29)
- Re: Vendor Participation on List and Proper Identification Parker, Ron (Aug 02)