On Friday 28 April 2006 17:56, Mike Fitton wrote:
> You actually sent this website your scanned D/L or barcode???
>
> Is it just me, or does this sound phishy?.....
>
> A lot of these sites just offer a generic error messages as if something
> went wrong, when in actuality they have just garnered good information for
> their database.
>
> Not to say that this site is evil, just that *a lot are*.......
bottom line:
don't send ANY personal data over a network, unless
- you control the network,
- or it's encrypted,
- or the destination organization is transparent enough to know what
they are
doing with the data
- or you trust the destination organization
- or you don't care if someone steals your identity/money
I have training in electronic warfare thanks to the military (not that I'm an
expert or anything) - and the number ONE rule about it is simply:
"If something can be intercepted, decrypted, or utilized, it will. Period."
Which means you don't transmit anything sensitive via any medium if it
shouldn't be intercepted.
(disclaimer, if the decryption methods take 24 hours or longer, and the
message is meaningless in an hour, then the level of encryption is adequate.
But one should assume all encryption can be broken, and then plan
accordingly.)
Shawn
_______________________________________________
clug-talk mailing list
[email protected]
http://clug.ca/mailman/listinfo/clug-talk_clug.ca
Mailing List Guidelines (http://clug.ca/ml_guidelines.php)
**Please remove these lines when replying
