Follow Slashdot stories on Twitter

 



Forgot your password?
typodupeerror

Slashdot videos: Now with more Slashdot!

  • View

  • Discuss

  • Share

We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).

×

Comment: Klump vs. Nazareth High (Score 5, Informative) 1044

by mtg169 (#26530381) Attached to: 6 Pennsylvania Teens Face Child Porn Charges For Pics of Selves
Similar cases like this are popping up all over the country. I did some research awhile ago and found a case in Pennsylvania, Klump vs. Nazareth, and the courts actually found the school guilty of violating the students' privacy and constitutional rights by looking at the contents of their phone. This case basically stated that although the school can have a no cell phone use policy, it does not give the school or school officials the privilege to search the contents of the phone at will unless it is believed that the student is using the phone to violate another policy (IE: using the phone to cheat). The point is, in order for any school official to search cell phone contents, the student would have to be violating another policy other than the no cell phone use policy. Being that this case is also in PA, it could be used as case law and charges would most likely be thrown out. PDF here: http://www.paed.uscourts.gov/documents/opinions/06D0400P.pdf
Security

+ - PA Online Voter Registration Data Left Unsecure->

Submitted by mtg169
mtg169 (1257810) writes "Anyone in Pennsylvania who has used the SURE Portal System to update their voter registration information or register to vote currently is at risk. A script (PrintVoterApplication.aspx) used to generate PDF files populated with user-submitted information is currently exploitable by simply changing the value of a request ID (ApplicationID), as there is no validation to ensure the ID being requested belongs to the user that is logged in, nor does it even check to see if a user is logged in, allowing anyone on the Internet full access. View linked story for additional exploit details.

I should also note that the SURE Portal Web site has a Privacy Policy including security and an information disclaimer, which basically states that they have implemented security practices, but that they are not responsible for any loss."

Link to Original Source

... though his invention worked superbly -- his theory was a crock of sewage from beginning to end. -- Vernor Vinge, "The Peace War"

Working...