[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: FV Demonstrates Fatal Flaw in Software Encryption of Credit Cards

To: Nathaniel Borenstein <[email protected]>, [email protected]
Subject: Re: FV Demonstrates Fatal Flaw in Software Encryption of Credit Cards
From: David Mazieres <[email protected]>
Date: Tue, 30 Jan 1996 04:34:18 -0500
In-Reply-To: Nathaniel Borenstein's message of Mon, 29 Jan 1996 15:07:46 -0500(EST)
References: <[email protected]>
Sender: [email protected]

This sounds like nothing but a glorified keystroke sniffer like xkey.

More importantly, however, if my system did get compromised, I would
have bigger worries than my credit card number.  I give my credit card
number out to people every day, but no one knows my PGP or ssh
passphrases, for example.

You may argue that many people don't have source code to their OS's,
so that viruses can spread more easily to them than to me.  Well, many
people don't do backups, either.  Ask most people if they would rather
divulge their credit card numbers or loose the entire contents of
their hard drives, and I think the answer will most likely be the
credit card number disclosure.

This article looks like a cheap attention getting device for FV to get
some free publicity.  I am not impressed.

David

References:
- FV Demonstrates Fatal Flaw in Software Encryption of Credit Cards
  - From: Nathaniel Borenstein <[email protected]>

Prev by Date: Re: PGP Shell Integrity
Next by Date: Sad state of affairs
Prev by thread: Re: FV Demonstrates Fatal Flaw in Software Encryption of Credit Cards
Next by thread: Re: FV Demonstrates Fatal Flaw in Software Encryption of Credit Cards
Index(es):
- Date
- Thread