I am advocating a separate login name from the publicly-known account number
not simply to foil hackers, but to prevent denial of service type attacks.
Anyone at present can lock out any e-gold account he chooses simply by using
the account number and typing an incorrect password a few times! This could
happen to any ordinary user or to a major MM or exchange provider, or to an
e-gold store.
How would you like to hear the excuse if you wired several thousand dollars
to a Market Maker, that they couldn't send you the e-gold because they
couldn't log in? Indeed, how often have we already seen such complaints on
this list, where high volume e-gold users/businesses are complaining they
cannot log into e-gold, when we know we just logged in that day and had no
problem, and rarely ever do?
Regards,
Ian Green
aoShop.com
> -----Original Message-----
<SNIP>
> I quite agree that a secret account number, a log-in name
> different from the
> account number, and a second password are the same thing. But
> it's not worth
> arguing over what you call it. The question is would it increase security?
>
> It is a granted here that we are talking about protection from
> sophisticated
> trojans, keyboard sniffers etc. I think most of us on this list
> know that we
> should have good passphrases and should not enter them on other sites.
> That's not what I'm worried about. If someone can convince me
> that that's my
> only concern, I will be very happy, but Frederick's story appears
> to confirm
> my fears.
>
>
> offshoresurfer
<SNIP>
---
You are currently subscribed to e-gold-list as: [email protected]
To unsubscribe send a blank email to [EMAIL PROTECTED]
