Comments on: At Yahoo, being paranoid comes with the job

All employees are encouraged to be at least a little paranoid. Meet the man who was the first to put it in a job title.
Photos: A peek at Yahoo 'Paranoids'

[Ilgaz]

Fire mail security/admin team dear Paranoia boss

The mail team does these and these are the facts I formally sent to Yahoo.

1) Random disabling of SORBS RBL which only includes time tested, open proxies which you would expect nothing but trouble.(see 2 too)

2) Allowing very basic scam schemes which have very complex results such as murder in real life. Yes the Nigerian Mafia scams. Basic as: Newbie MS Outlook Express user can filter them by HAND by very basic filter.

3) Ignoring end user reports sparing their precious personal time and showing Spamcop Report URL's which are pretty standard for hosting providers and bounce them a stupid template saying they need full message headers.

I am against the other monopoly wannabe who is a complete disrespect to user privacy but our limits are already in border.

You know what to do as a paranoid leader? Get a free account, be paranoid so don't share it with people at Yahoo, give it to couple of known spammer friendly or insecure sites, check back your inbox. You will see march of open proxies, basic scam schemes.

Also instead of telling those outsourced team to reply as template to mails they DON'T UNDERSTAND, THEY ARE TECHNICALLY INCAPABLE OF UNDERSTANDING, let them IGNORE mails since the Auto reply templates really started to hit peoples nerves.

(KMM52131562V38554L0KM ) ---> Actual feedback trail which goes on for a WEEK.

[Claire Gaeta]

Got a Little worried late last night

Last night, while attempting to check my yahoo mail, I got a notification from Norton 360 that the yahoo site security certificate had been revoked.

What is really going on here?

[Stating]

Yahoo: Stupidity Begins At Home

Maybe the Yahoo Security Team can explain why they do not suppport encryption of email traffic for PAYING customers working at WiFi hotspots? Yeah, Yahoo supports https: for the login, but after that it is plaintext http:

Ilgaz's comments about stupid Yahoo's lack of even basic spam filtering is spot on. I will also add, yet again, that it is ridiculous that customers can't even block email from top level domain countries of known mass spammers such as China, Poland, etc. I am sorry Terry Smell, but I have no communications with China or Poland at all, so why do you force me to get countless ads from them for Rolex watches and pen1s enlargement pills?

I submit the following fresh Yahoo spam email so that Yahoo's Kindergarten software engineers can learn from example:

From Mavis Rivera Tue Jun 26 05:11:38 2007
X-YahooFilteredBulk: 195.16.88.9
X-Originating-IP: [http://195.16.88.9|http://195.16.88.9]
Return-Path: <mavis_rivera2048@unisys.com>

She/He will love this iblj
You've Seen Them On TV...
Doctor Approved And Recommended.
http://www.geocities.com/e964bd
tundra ackley tusk image.

--> fwhois 195.16.88.9
address: Stream Communications Sp. z o.o.
address: ul. 29 Listopada 130
address: 31-406 Krakow
address: Poland

[n3td3v]

Yahoo crack day

That is something we were all paranoid about that Yahoo smoke too much crack.

[n3td3v]

Superhero cartoon characters

I hope Yahoo paranoids also carry out mandatory drug checks on its employees, with special emphasis on the Yahoo security team.

[qwerty75]

What is with the BS marketing term?

Web 2.0 is a meaningless term meant to make applications that use the internet seem more hip and advanced then it really is.

Why do people insist on buying into the nonsense?

[n3td3v]

Yahoo paranoids T-shirt

I was offered one of those t-shirts by senior security consultant Mark Seiden, but I turned it down through paranoia that he was socially engineering me to obtain geographical intelligence postal information about me, but I guess that gives me extra yahoo paranoid status amoung the all time great superheros.

I would like the list of Superheros post on the Yahoo security website, I also think this information about Yahoo paranoids should of been more public to the security community long before today.

Yahoo over the years has done itself no good deeds in respect of public relations between underground folks, so hopefully this is part of a U-turn on their "say nothing" policy.

However, after you strip away the Superhero stuff, they still haven't said anything much than to say they employ more than 50 employees.

[anarchyreigns]

Terry Semel is a cartoon character!

Glad that clueless piece of trash is going. Good riddance.

[n3td3v]

Agreed

He properly screwed up the original core mission Yahoo was born with and turned Yahoo into a media and content company, which distracted Yahoo from its original mission critical that Google realised they were straying away from so took advantage of that.

Lets hope jerry yang can get back to the original mission critical but I doubt that because the first thing he baught was a sports website that no one is interested in.

Yahoo get back to search and sorting out peoples information, and take back what Google stole away from Yahoo during the terry semel years.

What everyone is asking is will the change from Terry to Jerry really make a difference,when most folks just think Yahoo is a load of "erry" anyway.

[n3td3v]

Kudos to Joris Evers

Thank you for this story and ripping apart and exposing Yahoo security team's drug activities within the company, with the cartoon stuff evidence of this and the paranoia are all classic signals of drug use.

For years the underground community joked about drug use within the company affecting their security operation, but todays findings couldn't be more WEIRD.

Ok, maybe they don't take drugs, but its definitely weird.

[Stating]

Yahoo Messenger Down, Again No Status

Yahoo Messenger has been down since Tuesday night. Again no status message from Yahoo regarding the outage. Like, how hard is it Yahoo to put a 2 line message on www.yahoo.com mentioning the outage -- or send an email to Yahoo users?

[mcgmatt]

Not paranoid enough.

There is a Facebook feature that asks for your Yahoo login, then Facebook logs in to your Yahoo account and retrieves your address book data. This should not be possible.

People shouldn't be stupid enough to enter their e-mail login on other sites in the first place, but that's too much to hope for. Yahoo needs to block Facebook and any other site that does this.