Four years ago a student, investigating the security of campus computer networks for a proposed student government online election system, discovered that grades, financial aid data, and Social Security numbers were readily available. When he reported his findings, he was punished for trespass and the computers were left unsecured. Now, the Unversity has managed to lose over 367,000 student records to more malicious hackers. There’s got to be a lesson in here somewhere about…something. Punishing people for revealing security problems rather than fixing them is a good way to react? No, that’s not it. Hmm…