Page 1 of 1
"The Net's Real Security Problem" this a real thre
Posted: Tue Dec 26, 2006 3:55 pm
by DaveTheAve
The Net's Real Security Problem
I actually found this article a month ago and was going to post it here but I forgot; typical me. Please enlighten me on your thoughts on this "real security problem".
Posted: Tue Dec 26, 2006 4:40 pm
by Chris Corbyn
Banks could require customers to use a USB dongle when they access the web site. I'm not sure where I've heard this done before but that idea didn't just come out of the thin air currently floating around my head

Posted: Tue Dec 26, 2006 10:55 pm
by alvinphp
Banks are all moving to multi-factor authentication so it is not enough to just copy a banks generic login page as the login will have a unique image specific to you (similar to what yahoo does with web mail). So a hacker is not going to have any idea what your unique image.
Posted: Wed Dec 27, 2006 10:01 am
by DaveTheAve
You guys seem to be taking this on a single topic, having fooled around with hacking quite a bit myself - having worked for my local courthouse - I was talking more about the overall security for the web. For example: google, devnet, MicroSh*t, /., digg, (enter one of your many pornsites here), or if you really need to get money from the hack, paypal. See what I'm getting at? This ranges much further then your banks; though banks is the best one too do.
Posted: Wed Dec 27, 2006 10:24 am
by shiznatix
i read the article and found it to be awesome. except, if these things are so easily done as the article seams to imply, then why has it not been a big problem yet? its not from lack of hackers i am sure.
Posted: Wed Dec 27, 2006 10:49 am
by timvw
I'm pretty sure the belgian root dns server was once a victim of such an attack four a couple of hours (almost 10 years ago now)... I'm not sure that they've found a good way to prevent such attacks now (but i don't know the technical details...)