Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Yahoo recommends you write down account information

From: <bigdaddyzeroday () hush ai>
Date: Thu, 16 Mar 2006 18:45:33 -0800
Do you blow everything out of perportion like this?  How old must 
you be to have this attitude.

On Thu, 16 Mar 2006 15:52:06 -0800 n3td3v group 
<system_outage () yahoo com> wrote:

You're Yahoo's top security advisor, who I talk to every day off 
the record, but you say PEOPLE LIE ABOUT INFORMATION THEY PUT ON 
ONLINE FORMS?
  
 I think you're missing the point. The account information YAHOO 
ask users to print out is the ACTUAL information on the users 
ACCOUNT table.
  
 SURE, folks can type COMPLETE crap in their registeration for 
signing upto a Yahoo account, but whatever information is 
submitted to the Yahoo account, it is the TRUE information that 
would give access to that account.
  
 SO, no matter the trend of users giving BOGUS information to 
sign up for an account, the only people who would print out 
information is people who would have submitted TRUE information. 
Otherwise, why would they print out info they knew was bogus?
  
 MARK, you're Yahoo's top security advisor, and I respect you off 



the record, but coming on here trying to defend Yahoo's sec pros 
for getting it totally wrong in their CONTRADICTION between sites 
is totally wrong.
  
 Yahoo said the wording  "DONT WRITE DOWN YOUR PASSWORD" but on 
the registeration proceedure it says "YAHOO RECOMMEND YOU WRITE 
DOWN YOUR ACCOUNT INFORMATION"
  
 YOU AS YAHOO SECURITY ADVISOR NEED TO ADMIT "YAHOO" AS A 
CORPORATION GOT IT WRONG.
  
 I speak to you every day off list, but going off on your own 
crusade won't make the rest of the Yahoo security team like you 
better.
  
 SEE YOU OFF LIST SEIDEN.
  
 Sorry to everyone else, this is part of an off list argument 
that Yahoo's top advisor can't get a grip of.
  
 (How did you become Yahoo's top security advisor? :P)
 SEE YOU OFF LIST
 Bye
  
  
  
  
 mis () seiden com wrote:
   a certain number of people lie about their birthdate and 
zipcode, or
they forget just what they lied about, or move from place to
place and forgot where they lived when they registered, 
and they don't have a working alternate email address.

                      
---------------------------------
Yahoo! Mail
Use Photomail to share photos without annoying attachments.




Concerned about your privacy? Instantly send FREE secure email, no account required
http://www.hushmail.com/send?l=480

Get the best prices on SSL certificates from Hushmail
https://www.hushssl.com?l=485

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: