undefined | Better HN

0 pointsrobertgraham12y ago0 comments

I can't reveal the exact SQL query because that's customer private information.

However, it had both a subject and a timeframe that were peculiar. Googling the subject revealed news stories about it -- making it clear this was something the U.S. was interested in, but which would be no particular interest to anybody else.

0 comments

3 comments · 2 top-level

saraid21612y ago· 1 in thread

Can you reveal the subject and timeframe? It doesn't seem like those would require customer private information.

pja12y ago

If you have a restricted timeframe & the information that the US government would be interested in knowing details about an event that happened in that timeframe, then that might well be enough information to identify the company involved, or at least reduce the list of candidates to a very short one indeed.

The OP probably has a contractual duty to protect their client's identity & therefore can't take the risk that revealing more details would result in their client being identified.

rsync12y ago

"I can't reveal the exact SQL query because that's customer private information."

That doesn't make sense.

The results of the query are probably private customer information, but the query itself has nothing to do with them (hopefully) and was simply the net the TLA was casting.

You've broken the seal by reporting that it was done at all and reporting the exact query doesn't change that.

OTOH, not reporting on what the actual query was makes me very skeptical about the whole thing.

By all means, obfuscate table names or whatever if there was a wildcard involve that matched customer defined elements (or whatever).

j / k navigate · click thread line to collapse