Duke recognizes responsible disclosure
Researchers sometimes discover security vulnerabilities with university systems and networks, and Duke recognizes the value of identifying and remediating these issues, in accordance with the university’s responsible disclosure policy found here: Responsible Disclosure Policy and Guidance.
We'd like to recognize Andrew McDermid for their efforts in identifying a vulnerable system, alerting the IT Security Office of the issue and working with Duke IT security staff to remediate it. Efforts such as these ensure a more secure environment for all of our users.
Andrew McDermid is a security researcher that can be contacted here:
To report a security issue, please contact the us at firstname.lastname@example.org.