Re: Clinton's Office Says Her Passport Files Also Breached

["John C. A. Bambenek, GCIH, CISSP" <bambenek.infosec () gmail com>]

I didn't say the access wasn't a big deal, those involved got fired.  I'm
saying it shouldn't be wall to wall coverage for the next 48 hours with
politicians running to the nearest microphone saying "me too!".

They got caught, looks like the system worked.

On Fri, Mar 21, 2008 at 11:37 AM, Paul Ferguson <fergdawg () netzero net>
wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> - -- "John C. A. Bambenek,GCIH,CISSP" <bambenek.infosec () gmail com> wrote:
>
> > For the record, I've been to Ireland three times and Italy once. Who
> > cares.
>
> I care. And I don't particularly think that people with access to
> such information should be able to casually browse it.
>
> I've filled up a couple of passports over the course of the past
> 15 years or so, traveling to places such as China, Macao, Taiwan,
> The Czech Republic, The Philippines and other places which may --
> at some point in the future -- be considered to be controversial,
> depending on political climate.
>
> Do you recall all of the sensitive, personally-identifiable
> information that might be in your "passport file"? You parents
> names, addresses, etc.? What else?
>
> For someone with GCIH and CISSP credentials, your cavalier
> attitude towards these sorts of access control failures is kind
> of troubling.
>
> - - ferg
>
> -----BEGIN PGP SIGNATURE-----
> Version: PGP Desktop 9.6.3 (Build 3017)
>
> wj8DBQFH4+Q9q1pz9mNUZTMRAlBsAJ9mwaHKAvUvaa2sJxmOUyOMRTDFHwCfTRf4
> Z1rlIr7V+mOywUGtfnv0gTE=
> =ozN4
> -----END PGP SIGNATURE-----
>
>
> --
> "Fergie", a.k.a. Paul Ferguson
>  Engineering Architecture for the Internet
>  fergdawg(at)netzero.net
>  ferg's tech blog: http://fergdawg.blogspot.com/
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.