Security Basics mailing list archives

RE: a basic lesson in security

From: "marco misitano" <misi () cisco com>
Date: Wed, 29 Oct 2003 16:06:28 +0100

have a look at this.

http://www.ietf.org/internet-drafts/draft-aeble-ooo-replies-00.txt

Marco Misitano, CISSP
http://misitano.com
marco-at-misitano-dot-com


----Original Message----
From: Paul O'Malley [mailto:ompaul () eircom net]
Sent: Monday, October 27, 2003 20:32
To: security-basics () securityfocus com
Subject: a basic lesson in security

Hiya,

Problem information disclosure.
Method auto responders.

Issue telling me (and who knows who else) you are out of the office
and being giving enough information to do social engineering. 

I am amazed at the amount of people who have set auto responders to
this mailing list - bad form folks unless you are all running honey
pot organisations (or sub organisations).  

I suggest that if you have a piece of software that you set it to
cause the minimum of messages (i.e. internal only) if you must mail
externally you put the organisation at risk.  

Should you have you a policy to help with dealing with caller
verification? 

Solution:
Have a second mail address that you use for list based material. (Now
that was hard was it not?) 

Cheers have a good week folks.

Paul O'Malley




---------------------------------------------------------------------------
Forum Systems PRESIDIO: PGP / XML GATEWAY APPLIANCE
The Presidio integrates PGP data encryption and XML Web Services
security to 
simplify the management and deployment of PGP and reduce overall PGP
costs 
by up to 80%.
FREE WHITEPAPER & 30 Day Trial -
http://www.securityfocus.com/sponsor/ForumSystems_security-basics_031027
----------------------------------------------------------------------------



---------------------------------------------------------------------------
Forum Systems PRESIDIO: PGP / XML GATEWAY APPLIANCE
The Presidio integrates PGP data encryption and XML Web Services security to 
simplify the management and deployment of PGP and reduce overall PGP costs 
by up to 80%.
FREE WHITEPAPER & 30 Day Trial - 
http://www.securityfocus.com/sponsor/ForumSystems_security-basics_031027 
----------------------------------------------------------------------------

Current thread:

a basic lesson in security Paul O'Malley (Oct 27)
- Re: a basic lesson in security Andy Cuff [Talisker] (Oct 28)
- Re: a basic lesson in security Ivan Hernandez (Oct 28)
- RE: a basic lesson in security marco misitano (Oct 30)