[openssl-users] Delete a post to openssl-user mailing list

Previous Topic Next Topic
 
classic Classic list List threaded Threaded
9 messages Options
Reply | Threaded
Open this post in threaded view
|

[openssl-users] Delete a post to openssl-user mailing list

Vollaro, John
Is it possible to remove a message I posted to the openssl-user email forum?

This e-mail, including attachments, may include confidential and/or
proprietary information, and may be used only by the person or entity
to which it is addressed. If the reader of this e-mail is not the intended
recipient or his or her authorized agent, the reader is hereby notified
that any dissemination, distribution or copying of this e-mail is
prohibited. If you have received this e-mail in error, please notify the
sender by replying to this message and delete this e-mail immediately.

_______________________________________________
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
Reply | Threaded
Open this post in threaded view
|

Re: [openssl-users] Delete a post to openssl-user mailing list

Viktor Dukhovni
On Tue, Apr 21, 2015 at 09:21:47PM +0000, Vollaro, John wrote:

> Is it possible to remove a message I posted to the openssl-user email forum?

No.

--
        Viktor.
_______________________________________________
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
Reply | Threaded
Open this post in threaded view
|

Re: [openssl-users] Delete a post to openssl-user mailing list

Vollaro, John
Can a message be removed by the system administrator of the openssl-user email forum?

My original post about " NULL EVP_PKEY" was flag by my company as a security risk.
The data in the post was "fake". I have been directed to remove the post if possible.

-----Original Message-----
From: openssl-users [mailto:[hidden email]] On Behalf Of Viktor Dukhovni
Sent: Tuesday, April 21, 2015 8:13 PM
To: [hidden email]
Subject: Re: [openssl-users] Delete a post to openssl-user mailing list

On Tue, Apr 21, 2015 at 09:21:47PM +0000, Vollaro, John wrote:

> Is it possible to remove a message I posted to the openssl-user email forum?

No.

--
        Viktor.
_______________________________________________
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users


This e-mail, including attachments, may include confidential and/or
proprietary information, and may be used only by the person or entity
to which it is addressed. If the reader of this e-mail is not the intended
recipient or his or her authorized agent, the reader is hereby notified
that any dissemination, distribution or copying of this e-mail is
prohibited. If you have received this e-mail in error, please notify the
sender by replying to this message and delete this e-mail immediately.

_______________________________________________
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
Reply | Threaded
Open this post in threaded view
|

Re: [openssl-users] Delete a post to openssl-user mailing list

Erwann Abalea-3
Bonjour,

The password "pwd1234" is obviously a test one, as is the file path
"c:/work/mypemfile.pem".
Knowing that you're using OpenSSL 1.0.2a shouldn't be a problem either.

What is the security risk?

--
Erwann ABALEA

Le 22/04/2015 15:55, Vollaro, John a écrit :

> Can a message be removed by the system administrator of the openssl-user email forum?
>
> My original post about " NULL EVP_PKEY" was flag by my company as a security risk.
> The data in the post was "fake". I have been directed to remove the post if possible.
>
> -----Original Message-----
> From: openssl-users [mailto:[hidden email]] On Behalf Of Viktor Dukhovni
> Sent: Tuesday, April 21, 2015 8:13 PM
> To: [hidden email]
> Subject: Re: [openssl-users] Delete a post to openssl-user mailing list
>
> On Tue, Apr 21, 2015 at 09:21:47PM +0000, Vollaro, John wrote:
>
>> Is it possible to remove a message I posted to the openssl-user email forum?
> No.
>

_______________________________________________
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
Reply | Threaded
Open this post in threaded view
|

Re: [openssl-users] Delete a post to openssl-user mailing list

Salz, Rich
In reply to this post by Vollaro, John
> Can a message be removed by the system administrator of the openssl-user
> email forum?

There are several places that archive openssl mailing lists.

> My original post about " NULL EVP_PKEY" was flag by my company as a security risk.

That seems erroneous to me.

> I have been directed to remove the post if possible.

Not really possible.  You can try to track down all the archive sites (some are listed on www.openssl.org, but probably not all).

_______________________________________________
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
Reply | Threaded
Open this post in threaded view
|

Re: [openssl-users] Delete a post to openssl-user mailing list

Michael Wojcik
In reply to this post by Vollaro, John
> From: openssl-users [mailto:[hidden email]] On Behalf
> Of Vollaro, John
> Sent: Wednesday, April 22, 2015 09:56
> To: [hidden email]
> Subject: Re: [openssl-users] Delete a post to openssl-user mailing list
>
> Can a message be removed by the system administrator of the openssl-user
> email forum?

No.

It's a mailing list. When your message was accepted by the list server, the server sent copies of it to every subscriber. That means (nearly) every subscriber had a copy at some point; most probably still have one or more, in a "deleted items" mail folder, in backups, etc. Some of those subscribers are actually robots - often gateways and archives like Gmane, which forwarded your message on and/or saved a copy in some repository that can be queried later.

So, for example, your original message is also available from the Gmane web interface:

http://article.gmane.org/gmane.comp.encryption.openssl.user/54716

And that means it's been indexed and cached by Google and other web spiders.

You'll never track down all the copies. Even if you did, you'll never get everyone who has one to delete it.

I'm afraid that cat is not only out of the bag, but no longer visible from the bag with the naked eye and receeding at high speed.

--
Michael Wojcik
Technology Specialist, Micro Focus





This message has been scanned for malware by Websense. www.websense.com
_______________________________________________
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
Reply | Threaded
Open this post in threaded view
|

Re: [openssl-users] Delete a post to openssl-user mailing list

jonetsu
In reply to this post by Erwann Abalea-3
> What is the security risk?

Management ?  :)


Reply | Threaded
Open this post in threaded view
|

Re: [openssl-users] Delete a post to openssl-user mailing list

Chris Gray-4
>> What is the security risk?
>
> Management ?  :)

There could be a perceived problem that the world now knows that "company
X has problems with OpenSSL", and a competitor could even try to make
mischievous use of this "information" - it happened to me once (with
another technology).

Death of developer mailing lists predicted; film at 11.



_______________________________________________
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
Reply | Threaded
Open this post in threaded view
|

Re: [openssl-users] Delete a post to openssl-user mailing list

jonetsu
It can be indeed easy to find out about companies in Hartford, CT but, I still do not see any threat to any existing product.  'Having problems with OpenSSL' is not good enough.

In any case, when concerned, do like many people and use a pseudo from another mailing system.  Employees will not gain promotion points anyways by having their real names in mailing lists.