Thought I may be slipping in my old age. :) Sad thing is most places I've worked don't require encryption on the devices because the address book can't be accessed when the phone is locked w/o entereing the password...and the PHB's grumble.
As others have noted, it all comes down to physical access. - WJR On Thu, Feb 10, 2011 at 11:36, Martin Blackstone <[email protected]>wrote: > You are correct. The device is not encrypted. Just the traffic. > > > > *From:* William Robbins [mailto:[email protected]] > *Sent:* Thursday, February 10, 2011 9:34 AM > > *To:* NT System Admin Issues > *Subject:* Re: IPhone attack reveals passwords in six minutes > > > > But that's just net traffic to and fro correct? I thought we were > discussing encryption on the device itself, which is not on by default. > > - WJR > > On Thu, Feb 10, 2011 at 11:32, Martin Blackstone <[email protected]> > wrote: > > All BB traffic is encrypted by default. > > > > *From:* William Robbins [mailto:[email protected]] > *Sent:* Thursday, February 10, 2011 9:31 AM > > > *To:* NT System Admin Issues > *Subject:* Re: IPhone attack reveals passwords in six minutes > > > > The big *if *on Berry's is Encryption has to be turned on. :) > > - WJR > > On Thu, Feb 10, 2011 at 11:25, Paul Hutchings <[email protected]> > wrote: > > Normally I'd agree but what about devices such as Blackberry where they use > AES encryption and if you enter the password X times incorrectly, it erases > itself? > > I ask as Blackberry have some pretty decent government certification which > suggests that unless you have some hefty resource at your disposal (i.e. > agency or state) you're not likely to get far. > > (awaits the link showing how an encrypted and password protected blackberry > has been compromised in 5 minutes) > > > > -----Original Message----- > From: S Powell [mailto:[email protected]] > Sent: 10 February 2011 17:10 > To: NT System Admin Issues > Subject: Re: IPhone attack reveals passwords in six minutes > > two words. > > remote wipe. > > Yep, big security issue, but if someone has physical control of your > device, any device, you should always consider it compromised. > > > > > @THIS STATMENT IS VERIFIABLY INCORRECT > > > > On Thu, Feb 10, 2011 at 08:40, David Lum <[email protected]> wrote: > > What I don't know is if this phone OS is any worse than anything else > > in use. Anyone care to comment?: > > > > > > > > "Among passwords that could be revealed were those for Google Mail as > > an MS Exchange account, other MS Exchange accounts, LDAP accounts, > > voicemail, VPN passwords, WiFi passwords and some App passwords" > > > > > > > > http://www.computerworld.com/s/article/9208920/IPhone_attack_reveals_p > > asswords_in_six_minutes?taxonomyId=85 > > > > > > > > David Lum // SYSTEMS ENGINEER > > NORTHWEST EVALUATION ASSOCIATION > > (Desk) 503.548.5229 // (Cell) 503.267.9764 > > > > > > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ > > <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > > > --- > > To manage subscriptions click here: > > http://lyris.sunbelt-software.com/read/my_forums/ > > or send an email to [email protected] > > with the body: unsubscribe ntsysadmin > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ < > http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > > -- > MIRA Ltd > > Watling Street, Nuneaton, Warwickshire, CV10 0TU, England > Registered in England and Wales No. 402570 > VAT Registration GB 100 1464 84 > > The contents of this e-mail are confidential and are solely for the use of > the intended recipient. If you receive this e-mail in error, please delete > it and notify us either by e-mail, telephone or fax. You should not copy, > forward or otherwise disclose the content of the e-mail as this is > prohibited. > > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
