[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [WEB SECURITY] Interesting University Security Weakness
- From: Bill Pennington <bill@xxxxxxxxxxxxxxx>
- Subject: Re: [WEB SECURITY] Interesting University Security Weakness
- Date: Mon, 20 Mar 2006 11:24:17 -0800
I have audited a few online course applications and found them to be
some of the most insecure applications out there. I don't know who is
actually writing these things but security is not even on there radar
from what I can tell. Add that to the fact that most of the
applications are just plain horrible from a UI and usability standard
makes me think there is a lot of room to grow in this space.
On Mar 20, 2006, at 10:55 AM, Schmidt, Albert E wrote:
During a recent audit of UMUC I had an interesting audit finding.
Background: The majority of UMUC classes are online and UMUC has the
largest student population of all of the University's in the
University
System of Maryland. See Finding #6 at
http://www.ola.state.md.us/Reports/Fiscal%20Compliance/UMUC06.pdf
Al S.
---------------------------------------------------------------------
The Web Security Mailing List
http://www.webappsec.org/lists/websecurity/
The Web Security Mailing List Archives
http://www.webappsec.org/lists/websecurity/archive/
---
Bill Pennington, CISSP, CCNA
VP Services
WhiteHat Security Inc.
http://www.whitehatsec.com
---------------------------------------------------------------------
The Web Security Mailing List
http://www.webappsec.org/lists/websecurity/
The Web Security Mailing List Archives
http://www.webappsec.org/lists/websecurity/archive/
Brought to you by http://www.webappsec.org