[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] security at .edus

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: Re: [Full-disclosure] security at .edus
From: "Brian Eaton" <eaton.lists@xxxxxxxxx>
Date: Sun, 23 Apr 2006 13:50:53 -0400

On 4/23/06, Randal T. Rioux <randy@xxxxxxxxxxxxxxx> wrote:
> > I suspect the anonymous educational institution in question is hardly
> > the only vulnerable site out there.  Universities tend to be fairly
> > decentralized places, where academic freedom can count for a lot more
> > than a secure network.  Plus a university network has fewer secrets to
> > protect than a business.
> >
>
> Tell that to the DoD sponsored research labs within many universities.

True 'dat.

And it's probably worth adding the medical school and some of the
social sciences departments to the list.  Depending on the research
being done, they have access to some fairly large databases with lots
of personal information.  HIPPA ought to be making that a bit better.

Regards,
Brian

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] security at .edus
  - From: Brian Eaton
- Re: [Full-disclosure] security at .edus
  - From: Randal T. Rioux

Prev by Date: Re: [Full-disclosure] Proxy Detection
Next by Date: Re: [Full-disclosure] Re: Who Do I Contact?
Previous by thread: Re: [Full-disclosure] security at .edus
Next by thread: Re: [Full-disclosure] security at .edus
Index(es):
- Date
- Thread