Firewall Wizards mailing list archives
RE: Transitive Trust: 40 million credit cards hack'd
From: "Paul D. Robertson" <paul () compuwar net>
Date: Mon, 20 Jun 2005 18:59:51 -0400 (EDT)
On Mon, 20 Jun 2005, Behm, Jeffrey L. wrote:
True, Marcus, but not everyone _does_ use 2 factor auth. So, at this point, it can be effective. You don't gotta outrun the bear, just the guy next to you.
That assumes (1) a single bear OR (2) that you can outrun the bear in the time it takes it to disable the other target. Autonomous malcode changes that equation, as does semi-random targeting. Now, personally, I'm all for making most of the current crop of attacker tools outdated, not because I think it'll make us safe, but because it'll force attackers to keep up, and I'd rather they not be provided the option of being lazy if we all have to work too. But more importantly, two factor authentication starts to provide a really good base for accountability- and THAT is what we *need*. The only problem is that the m0r0ns will all want "soft tokens" to lower the attacker's bar again. Paul ----------------------------------------------------------------------------- Paul D. Robertson "My statements in this message are personal opinions paul () compuwar net which may have no basis whatsoever in fact." _______________________________________________ firewall-wizards mailing list firewall-wizards () honor icsalabs com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- RE: Transitive Trust: 40 million credit cards hack'd Behm, Jeffrey L. (Jun 20)
- Message not available
- RE: Transitive Trust: 40 million credit cards hack'd Marcus J. Ranum (Jun 20)
- Re: Transitive Trust: 40 million credit cards hack'd Adam Shostack (Jun 20)
- RE: Transitive Trust: 40 million credit cards hack'd Bill Sharrock (Jun 29)
- RE: Transitive Trust: 40 million credit cards hack'd Marcus J. Ranum (Jun 20)
- Message not available
- RE: Transitive Trust: 40 million credit cards hack'd Paul D. Robertson (Jun 20)
- Re: Transitive Trust: 40 million credit cards hack'd Kevin (Jun 20)
- RE: Transitive Trust: 40 million credit cards hack'd Brian Loe (Jun 21)
- Re: Transitive Trust: 40 million credit cards hack'd Kevin (Jun 21)
- Re: Transitive Trust: 40 million credit cards hack'd Kevin (Jun 20)
- <Possible follow-ups>
- RE: Transitive Trust: 40 million credit cards hack'd Richards, Jim (Jun 20)
- RE: Transitive Trust: 40 million credit cards hack'd Eugene Kuznetsov (Jun 20)
- RE: Broken Analogies (was: Transitive Trust) Ben Nagy (Jun 21)
- RE: Broken Analogies (was: Transitive Trust) Brian Loe (Jun 21)
- RE: Transitive Trust: 40 million credit cards hack'd Eugene Kuznetsov (Jun 20)
- RE: Transitive Trust: 40 million credit cards hack'd Paul Melson (Jun 21)