-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hello all
On 20/02/2013 09:45, Stephen Evans wrote:
> We have received the same request. Do you think it's genuine?
It might be worth emailing the sender:
[log in to unmask]
and enquiring.
If someone has the original email to share you can look
at the headers to see if it originated from BU.
Looking at the survey there's not a tremendous amount of detail
gathered that you couldn't gather automatically by just scanning
most sites and looking at their web server banners.
You could argue that 'University x has replied telling me they're
running Apache 2.0.35 on Linux' provides useful intelligence for an attacker
but it's no more information than your site reveals to strangers on the Internet every day.
- --
Peter Bates
Senior Information Security Officer Phone: +44(0)2076792049
Information Services Division Internal Ext: 32049
University College London
London WC1E 6BT
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.13 (MingW32)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iQEcBAEBAgAGBQJRJJ/rAAoJELhVoVpEMS6RHPsH/1tIxxUYvqG4v10OfiMSVAs8
qb0XFIV3GtypXJDxdgZRiydnPUKYQrzD/ZU30L2rQ21GTzPoZ7ADQNz3zlkdW+oi
tIJAQ73UN/1tK4G9K2rsfyZUnZqtjqZXiIlF9VuDZv8H2EmlxLTDGBFIAQLVVTVm
2HNpX0sOLNyvKcgomn+YMlb1XxUAKuohxKo8cDEN7gCTr6SJCchXC/eqY3JW9g9M
n+96MSO1ESV8JchJ6VDNstSS6oaX2cBZofx+XHmkGKmed3SwUCFWXoD2GN+oobdm
du+G/r1HmEqf8QGezPbCgrPJ8siupuMttfuiF5c40CMdH02iPMyFy8zshO88BAs=
=UaLU
-----END PGP SIGNATURE-----
|