Homeland Security Can't Even Configure Its Mailing List Software Correctly?
from the that-makes-me-comfortable dept
Just after the federal gov't screwed up and shut off ca.gov, we find out that the Department of Homeland Security misconfigured its email list software causing a deluge of annoying emails to over seven thousand government employees. The list, normally used to broadcast news summaries of security news, apparently was set up so that any reply messages automatically were broadcast to all members. What happened next is familiar to lots of folks on mailing lists, where the "reply all" button is misused. The one difference, though, was that this wasn't a misuse of the reply all button, but on the mailing list automatically sending out anyone's message to everyone on the list. Many security experts on the list are apparently wondering what that says about Homeland Security's ability to deal with cybersecurity issues. Perhaps it was just a little configuration error, but you would think that the folks at the DHS would be a bit more careful about those things.Thank you for reading this Techdirt post. With so many things competing for everyone’s attention these days, we really appreciate you giving us your time. We work hard every day to put quality content out there for our community.
Techdirt is one of the few remaining truly independent media outlets. We do not have a giant corporation behind us, and we rely heavily on our community to support us, in an age when advertisers are increasingly uninterested in sponsoring small, independent sites — especially a site like ours that is unwilling to pull punches in its reporting and analysis.
While other websites have resorted to paywalls, registration requirements, and increasingly annoying/intrusive advertising, we have always kept Techdirt open and available to anyone. But in order to continue doing so, we need your support. We offer a variety of ways for our readers to support us, from direct donations to special subscriptions and cool merchandise — and every little bit helps. Thank you.
–The Techdirt Team
Filed Under: email, homeland security
Reader Comments
Subscribe: RSS
View by: Time | Thread
Don't they know how to test things before implemen
Sorry - I should have never asked a stupid question.
[ link to this | view in thread ]
TRAITOR!
[ link to this | view in thread ]
what are you, stupid?
[ link to this | view in thread ]
I thought the Iranian Ministry of Defense employee
[ link to this | view in thread ]
It's not just worrying...
If they can't keep personal info away from people who shouldn't know it.....?
[ link to this | view in thread ]
Government Intelligence
The best part of all this though... Elections!!!
[ link to this | view in thread ]
They can't maintain a no-fly list either!
The no-fly list is a constant joke that never gets fixed.
[ link to this | view in thread ]
Out of office
[ link to this | view in thread ]
Ronald Reagan
[ link to this | view in thread ]
[ link to this | view in thread ]
Re: You never know
[ link to this | view in thread ]
[ link to this | view in thread ]
Re: OUt of Office
[ link to this | view in thread ]
Re: Re: OUt of Office
[ link to this | view in thread ]
Two words - Lotus Notes
http://arstechnica.com/news.ars/post/20071005-dhs-flunks-e-mail-administration-101-causes- mini-ddos.html
Why in the hell are they using Lotus Notes, IBM doesn't even use that piece of garbage. Great security BTW, grab a user.id file and your in. I know some Lotus fanboy will probably flap that tired diatribe "Notes is Groupware" which sounds good but it doesn't excuse the EXTREMELY POOR DESIGN of the Notes platform.
The most damning design flaw in Notes is the Address book. "All your eggs in one basket", hardly conveys the ignorance. More like "All your eggs, chickens, livestock, cash, children, hopes, dreams and then kitchen sick in one basket"
Beside the idiots at DHS should have a static reply to.
[ link to this | view in thread ]