I've noticed that there are lots of posts about people wondering whether or not to tell sys admins that they have security holes. For those of us who decide to spill the beans, does anyone have any advice on how to format the letter? Maybe someone who is good at writing could provide us with a template so those of us who are less skilled dont seem unprofessional?