Re: USPS Online Bill Pay - Cleartext Password Leakage (resolved)

From: Matthew Dent (dentmat_private)
Date: Tue Jan 22 2002 - 18:19:01 PST

Next message: Jim: "Re: D-Link DWL-1000AP can be compromised because of SNMP configuration"

Previous message: bugzillaat_private: "[RHSA-2002:014-07] Updated OpenLDAP packages available"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

The issue reported a couple of days ago regarding
password leakage on the USPS online bill payment
system has been resolved by USPS.

They are currently investigating why it had not come
to the attention of the appropriate people with my
first notification to them.

One point of clarification, Initial contact was made
with USPS on 1/3/2002, not 1/1/2002 as reported in the
original incident.  The error in date was inadvertant
(6 point font is really hard to read when your eyes
are tired), but should still be noted.

Matthew Dent

__________________________________________________
Do You Yahoo!?
Send FREE video emails in Yahoo! Mail!
http://promo.yahoo.com/videomail/

Next message: Jim: "Re: D-Link DWL-1000AP can be compromised because of SNMP configuration"
Previous message: bugzillaat_private: "[RHSA-2002:014-07] Updated OpenLDAP packages available"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Jan 23 2002 - 11:00:41 PST