The title is a little bit of tongue in cheek. That being said, on the SCADA mailing list this past Saturday the following was posted with regards to a new SCADA security list.
(5) Due to heightened security and awareness levels worldwide, ALL MESSAGES ARE WATCHED CAREFULLY. Violators who report methods that are going to disable, damage, dismember, destroy, or disarm any control system, SCADA device, or infrastructure will be reported to DHS (and/or their respective national or federal authority).
I was floored that they would endeavour to launch a public mailing list dealing with SCADA security but, threaten you if you disclose security issues. Especially since information that would “qualify” is routinely posted to the SCADA list. Odd. While I understand their motivations I think they missed the boat. Others are far more vocal on this point.
Kevin Poulsen From Wired:
Only the SCADA community could conceive of a mailing list that tries to get you arrested for discussing security issues. And we wonder why SCADA is still insecure.
What he said.
[tags]SCADA, SCADA Security[/tags]