Home page logo

fulldisclosure logo Full Disclosure mailing list archives

Re: What is wrong with schools these days?
From: Sol Invictus <sol () haveyoubeentested org>
Date: Mon, 24 Apr 2006 16:50:46 -0400

CrYpTiC MauleR wrote:

Already 2 school breaches on the news this week and my school will soon be added to the ever growing list, is this a trend? 
I mean how hard is it to protect some data. Allocate all the sensitive data on a select few servers and harden the hell out 
of them. Do these schools have info scattered around on various servers and sites and don't know what is where? I mean 
Jesus Christ just this week 477,000 personal records have been possibly breached. Does anyone know of any federal law being 
made or in discussion to prevent these from being an everyday thing and enforcing policies like California has?

University after university is being hit, wait until elementary, middle and high schools become attacked since so many 
are moving towards putting and doing everything from grades, enrollment and attendance through a computer network. Its 
a disaster waiting to happen. I really wish there was better laws enforcing that these areas are better protected.

Where do you think all these Bot-nets are coming from? They can't all be businesses. Some of the biggest bot-nets out there are made of schools. There mentality is to share information. They don't like to keep info private. Until that mentality changes, you will have this issue. And it won't change until there is a massive breach of their lack of security and there is a big lawsuit against the schools. If you want to be proactive, Call your attorney general and tell them your Privacy Act information is freely exposed by that entity. Or just go public. It's all your choice. Your the one that holds everyone's info in your hands (whether literally or not). The longer you wait, the more likely someone else has that info as well.

Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]