Subj : Passwords and bleeding hearts.
To : DAMON A. GETSMAN
From : BOB KLAHN
Date : Wed Apr 30 2014 02:28 am
DAG> _lot_ of people that don't bother to use a secure
...
DAG> password don't bother to use a _unique_ password with the
DAG> plethora of different sites that a person has to supply
DAG> login credentials to these days. Even the script kiddies
DAG> (people like myself, when I was in my early teens) know
DAG> this kind of stuff. So when they crack one set of login
DAG> credentials, they use the information in that file (your
DAG> first name, last name, login string, password, anything
DAG> else they can glean from that server) to check if you
DAG> have accounts on any similiar, or even dissimilar,
DAG> mainstream sites where lots of people connect to. Poof,
DAG> there's another handful. What if one of those is your
DAG> bank? Follow the chains of logic and you'll see that
I have two levels of passwords. Those that involve money get
higher security.
DAG> they can run off to a lot of other places as well. Doing
DAG> that kind of stuff can make you end up out on the street
DAG> broke and homeless. Doing that kind of stuff can let
DAG> people impersonate you and put you away for things you
DAG> never did. When you really think about it, the
Of course, one way to put a crimp in that is to hold the people
who accept those cracked passwords and give out credit cards
etc. If you don't see the person in person, don't give him a
card.
OTOH, I had a scenario like that, all they needed was my credit
card number. It was easy to show it was fake, and I lost
nothing, but closed out that card. Next time it happened I
called them to complain, and esp since the card they gave the
money out on was the one I had canceled. Apparently it was an
inside the card company job.
BOB KLAHN
[email protected] http://home.toltbbs.com/bobklahn
... Look on my tagline, ye mighty, and despair! Ozzie and Harriet Mandius.
--- Via Silver Xpress V4.5/P [Reg]
* Origin: Fidonet Since 1991 bbs.docsnetservices.com (1:123/140)
