Re: on the university problem

["Dude VanWinkle" <dudevanwinkle () gmail com>]

sorry, of course if yer peoplesoft pages have a blog, you deserve to get pwned

On 8/12/07, Dude VanWinkle <dudevanwinkle () gmail com> wrote:
> On 8/12/07, Jordan Wiens <numatrix () ufl edu> wrote:
> > Hey, I represe--err, resent that!  ;-)
> >
> > Seriously though, part of the reason edus stand out with spam blog
> > comments is because their search engine rankings are higher.  I don't
> > believe that EDUs are necessarily less secure than equivalent sized
> > businesses, it's just that they're more attractive targets for
> > spammers doing this particular attack.
>
>
>
> depends on which part of the .edu CAN you are talking about:
>
> 1) the student (isp-slash-riaa violation) side
>
> 2) the student private (firpa) side
>
> 3) the business (pci, local-slash-fed regs) side
>
> 4) the research side
>
>
> if you get pwned in the student-maintained phpbb site, no big deal
>
> if you get hit by a riaa lawsuit in the resnet, no big deal
>
> if yer old ass oracle-slash-peoplesoft app gets hit: big deal
>
>
> such is life
>
> -JP
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.