nanog mailing list archives
Re: Dear Linkedin,
From: Hal Murray <hmurray () megapathdsl net>
Date: Fri, 08 Jun 2012 21:42:59 -0700
Does your bank request/require that you change the PIN on your ATM card every few months?
ATM cards are not passwords, they are a coarse form of two-factor authentication - You have the card, you have the PIN.
You have to possess both in order to transact - at least in in theory.
Compare that with the secrecy surrounding the CVV - the "last three digits on the number on the back of the card" which you are "not meant to tell anyone" and which _will_ be different if your card is lost/stolen and reissued.
If I'm not supposed to not "tell anyone", why is it even printed where I can read it? ---- [Context is only having so-many brain cycles to memorize passwords.]
It's harder as we get old. Use technology to aid with the heavy lifting. :-)
Right. But the meta problem is figuring out which technology to trust. Phishing is the tip of the iceberg on social engineering. So far, the bad guys are winning. -- These are my opinions. I hate spam.
Current thread:
- Re: EBAY and AMAZON, (continued)
- Re: EBAY and AMAZON Henry Yen (Jun 11)
- Re: EBAY and AMAZON Jo Rhett (Jun 11)
- Re: Dear Linkedin, Hal Murray (Jun 08)
- Re: Dear Linkedin, Alec Muffett (Jun 08)
- Re: Dear Linkedin, Joel jaeggli (Jun 10)
- RE: Dear Linkedin, John Souvestre (Jun 10)
- Re: Dear Linkedin, Joel jaeggli (Jun 10)
- Re: Dear Linkedin, valdis . kletnieks (Jun 10)
- Re: Dear Linkedin, Alec Muffett (Jun 08)
- Re: Dear Linkedin, Mike Hale (Jun 08)
- Re: Dear Linkedin, Barry Shein (Jun 09)
- Re: Dear Linkedin, Jay Ashworth (Jun 09)
- Re: Dear Linkedin, Lyle Giese (Jun 09)
- Re: Dear Linkedin, Joe Greco (Jun 10)
- Re: Dear Linkedin, Mikael Abrahamsson (Jun 10)
- Re: Dear Linkedin, Barry Shein (Jun 10)
- Re: Dear Linkedin, John T. Yocum (Jun 10)
- Re: Dear Linkedin, Michael Thomas (Jun 10)
- OT: Credit card policies (was Re: Dear Linkedin,) Jay Ashworth (Jun 10)