Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: Re: Who Do I Contact?
From: "CrYpTiC MauleR" <crypticmauler () linuxmail org>
Date: Sun, 23 Apr 2006 13:46:20 -0500

My parents do not work there, I never said they do. Did it ever occur to you that the school would have stored parent 
info from financial aid? also I do not plan on revealing any SSNs to anyone even to make a point. That will definetly 
get me jail time even if its in good faith.


----- Original Message -----
From: "Dave "No, not that one" Korn" <davek_throwaway () hotmail com>
To: full-disclosure () lists grok org uk
Subject: [Full-disclosure] Re: Who Do I Contact?
Date: Sun, 23 Apr 2006 15:11:40 +0100


Valdis.Kletnieks () vt edu wrote:

The number of US universities big enough to have 7,000 incoming students
is extremely limited.  *that* little tidbit probably tells us more than
the fact his traceroute ends in Kansas.....

   Plus he just gave away that his parents work there, so we can cut it down
to those where we can automatically find surname matches between the staff
directory and the pupils list ....

   CM, my suggestion would be to phone up the Dean/Principal while he's in
the middle of his sunday lunch and read out his SSN to him and tell him how
he can go to his computer and see it for himself.  Do it from a phonebox,
tell him he really needs to bang heads together in the IT department *now*,
tell him you haven't messed or tampered with it in any way and you just want
it fixed because your own data is in there too (don't mention the parents!)
then say you're sorry but you hope he'll understand why you don't want to
identify yourself and ring off.

   Then when you go to school on Monday you can enjoy the looks of pain on
the faces of the IT staff who've been up all night fixing the hole because
the Dean's torn them all a second one ... ;-D


     cheers,
       DaveK
--
Can't think of a witty .sigline today....



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/




-- 
_______________________________________________
Check out the latest SMS services @ http://www.linuxmail.org
This allows you to send and receive SMS through your mailbox.

Powered by Outblaze

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]