nanog mailing list archives

Re: NSP-SEC

From: Valdis.Kletnieks () vt edu
Date: Fri, 19 Mar 2010 10:19:26 -0400

On Fri, 19 Mar 2010 04:43:18 BST, Guillaume FORTAINE said:

First question : Why was I able to find this mail on the Internet if it 
should be kept secret ?


Congratulations.  You found an example of a mailing list where applying a
standard disclaimer by default *does* make sense, which then got forwarded
*by a coordination team leader at a national CERT* to an appropriate forum
so that action could be taken, but failed to take the disclaimer off the
bottom of that posting.

Double bonus points for finding a posting that discussed something *really*
sensitive, like "we've seen bots connecting to...".  You *do* realize that
there's an estimated 140,000,000 bots on the net, right, and as a result,
some operation lists have *dozens* of "bots spotted connecting to" postings
*per day*.

And you wonder why you have a hard time being taken seriously.

Attachment: _bin
Description:

Current thread:

Re: NSP-SEC, (continued)
- - - Re: NSP-SEC Valdis . Kletnieks (Mar 23)
    - Re: NSP-SEC Nick Hilliard (Mar 23)
    - Re: NSP-SEC Guillaume FORTAINE (Mar 20)
    - Re: NSP-SEC Sean Donelan (Mar 20)
    - Re: NSP-SEC Gadi Evron (Mar 20)
    - Re: NSP-SEC William Pitcock (Mar 20)
    - Re: NSP-SEC Guillaume FORTAINE (Mar 21)
    - Re: NSP-SEC Andrew D Kirch (Mar 21)
    - Re: NSP-SEC Sean Donelan (Mar 20)
    - Re: NSP-SEC George Imburgia (Mar 20)
- Re: NSP-SEC Valdis . Kletnieks (Mar 19)
  - Re: NSP-SEC James Bensley (Mar 21)
    - Re: NSP-SEC Rich Kulawiec (Mar 21)
    - RE: NSP-SEC Alex Lanstein (Mar 21)
    - Re: NSP-SEC Patrick W. Gilmore (Mar 21)
    - Re: NSP-SEC Lorand Jakab (Mar 22)
    - Re: NSP-SEC Valdis . Kletnieks (Mar 21)
    - Message not available
    - Re: NSP-SEC James Bensley (Mar 22)
- Re: NSP-SEC David Barak (Mar 19)
  - RE: NSP-SEC Adam Stasiniewicz (Mar 19)
    - Re: NSP-SEC Valdis . Kletnieks (Mar 19)

(Thread continues...)