Educause Security Discussion mailing list archives

Re: Phishing E-mail Procedures

From: "Doty, Timothy T." <tdoty () MST EDU>
Date: Thu, 26 Jan 2012 17:09:10 +0000

Oh, so if a previous user education effort wasn't effective for a particular threat then we should just give up on user 
education? 

I read the linked page and it is off target on every count whether it is simply personal bias or an application 
development issue. If you apply the "logic" of not doing user education to educating application developers we would be 
stuck with those problems. 

Tim Doty
System Security Analyst
Missouri S&T

On Jan 26, 2012, at 10:42 AM, "Valdis Kletnieks" <Valdis.Kletnieks () VT EDU> wrote:

On Thu, 26 Jan 2012 10:31:17 CST, Jesse Thompson said:

modifying the subject/body of the scams, for example.  Are your users
too gullible?  Start educating them.  Etc.


http://www.ranum.com/security/computer_security/editorials/dumb/

See entry #5 :)

Current thread:

Phishing E-mail Procedures Robert Meyers (Jan 26)
- Re: Phishing E-mail Procedures Colleen Keller (Jan 26)
- Re: Phishing E-mail Procedures Pete Hickey (Jan 26)
- Re: Phishing E-mail Procedures Bob Bayn (Jan 26)
- Re: Phishing E-mail Procedures Jesse Thompson (Jan 26)
  - Re: Phishing E-mail Procedures Robert Meyers (Jan 26)
  - Re: Phishing E-mail Procedures Valdis Kletnieks (Jan 26)
    - Re: Phishing E-mail Procedures Jesse Thompson (Jan 26)
    - Re: Phishing E-mail Procedures Doty, Timothy T. (Jan 26)
    - Re: Phishing E-mail Procedures Valdis Kletnieks (Jan 26)
    - Re: Phishing E-mail Procedures Tim Doty (Jan 26)
    - Re: Phishing E-mail Procedures Valdis Kletnieks (Jan 26)
    - Re: Phishing E-mail Procedures Tim Doty (Jan 26)
- Re: Phishing E-mail Procedures Mike Porter (Jan 26)
  - Re: Phishing E-mail Procedures Roger A Safian (Jan 26)