[prev in list] [next in list] [prev in thread] [next in thread] 

List:       shibboleth-users
Subject:    RE: Shibboleth Identity Provider Security Advisory [27 October 2016]
From:       "Cantor, Scott" <cantor.2 () osu ! edu>
Date:       2016-10-27 21:11:21
Message-ID: 9846A6064BD102419D06814DD0D78DE112A77664 () CIO-TNC-D2MBX02 ! osuad ! osu ! edu
[Download RAW message or body]

Apologies for this going out at 5pm Eastern, but a) it's a bad one, b) it was publically disclosed inadvertently, c) it's easy to mitigate for the majority of sites, and d) it's not particularly exploitable in any deliberate way just by having knowledge of it so not knowing about it until the morning isn't going to have put anybody at any greater risk. Soonest possible wider dissemination seemed best.

-- Scott

-- 
To unsubscribe from this list send an email to users-unsubscribe@shibboleth.net
[prev in list] [next in list] [prev in thread] [next in thread]