:When somebody hijacks your ebay account and then puts iems on ebay, why doesn't the offended party find out immediatiely about the posting. Since ebay always sends an immediate confriming email to the account holders email address, that would be the "red flag" that signals that illegal activity has taken plance and the true owner of the account could then take proper action to report it to ebay, pull the posting and change his ebay ID and password. Or am I missing something here?
Bruce ----- Original Message ----- From: "Rich" <[email protected]> To: "Antique Phonograph List" <[email protected]> Sent: Friday, October 26, 2007 9:38 AM Subject: Re: [Phono-L] RE: Internet security > Storing passwords / login information etc. on a remote server is no > different from mailing them to me > for safekeeping. All you have is the word of an unknown individual or > website that they will keep > them safe. How many credit card numbers get lifted from some company who > has been storing them > for customer convenience. You read about that every day. I will not even > bother with the lack of > security that web based email "offers". But think about all of the free > space Google gives you for > storage of all of your files. Do you really trust them with your tax > records? Remote servers connected > to the internet are a secure as a cardboard box out behind your garage and > just about as difficult to > get into. And they have the added benefit of having many boxes of > individual data in one spot. > > Computer / internet security is an interesting area and individuals should > always consider the range > of potential consequences of the potential loss of control of any > information carefully before taking any > action. > > > > > On Fri, 26 Oct 2007 01:14:23 -0400, Steven Medved wrote: > >>For passwords I like roboform, you can go to roboform.com and if you have >>9 passwords or less it is > free. I have around 100 and I do not have to memorize them. These days > the scams keep on getting > better and better so you have to be more and more careful. If you have > any questions about roboform > you can ask me off list. I do not sell or make any money from it, but I > enjoy making suggestions. >> >>Best wishes, >> >>Steve > > > >>> > The default does not store passwords. You have to allow IE to store > >>> > passwords.> >> > > >I would > be more than willing to debate that with you. The password and > >username > is stored by IE if> > you > allow it to do so, this is more than the cookie that is set when you > > > check remember me. The MS> >> email programs will run several different programs if you allow then to >> be > > previewed, you do not > have> > to do anything. They will also execute any scripts imbedded in the > HTML > > if you preview > any HTML> > message. Your information is correct but somewhat out of date. > The > > people who are > getting burned> > now are the people running a stock system that has not > been modified for > > > secuity, they are still using> > the default settings.> >> >> > On Wed, 24 > Oct 2007 16:50:00 -0700, > Daniel Melvin wrote:> >> >>The previous post wasn't completely accurate, > but there was some good> >>>advise. Change settings on any email reader to not show the content of >>>the> >>email unless you > open it. All the issues mentioned below go away. Also, if> >>you use > Automatic Update with any > operating system you have the likelyhood> >>of such issues go way down as > well. Caution is the the > key. Don't open or> >>respond to emails from anyone you don't know. Don't > click on links in > >> > emails> >>you don't trust. It's fairly simple.> >> >>Also, the ebay > password is not on your computer in > a cookie unless you say> >>remember me on this computer. Something I never > do on any computer for > any> >>password. That again is not unique to windows. The password is > stored on> >>your computer > by the web page when you click on the remember me on this> >>system part > of the login page.> >> >> > Dan> >>----- Original Message ----- > >>From: "Rich" > <[email protected]>> >>To: "Antique > Phonograph List" <[email protected]>> >>Sent: Wednesday, October 24, > 2007 2:53 PM> >>Subject: > Re: [Phono-L] Record Price for Edison Army-Navy??> >> >> >>> If using > Windows and either Microsoft > email programs, Outlook or Outlook> >>> Express, you need to be aware> >>> > that Internet Explorer > stores login information. The email program will> >>> run a script if you > open or view,> >>> an email. > The script will go extract your login info and ship it off> >>> through > the internet. see the linkage> >>>> of the email and the browser? That is the hole. The script in question> >>>> >>> is usually a .vbs > routine> >>> embedded in an HTML formatted email. Outlook / Outlook > Express run the> >>> ,vbs by > default, you can turn> >>> this "feature" off. Also turn off displaying > HTML emails.> >>>> >>> This is > how you loose your ID and Password and never filled in anything.> >>>> > >>>> >>> On Wed, 24 Oct > 2007 14:48:20 EDT, [email protected] wrote:> >>>> >>>>Bruce, I had my eBay > identity AND password > hijacked recently and > >>>>someone> >>>>used it to put a bunch of > Mercedes, Jaguars and Rovers > up on eBay for> >>>>sale by> >>>>......me! I still haven't figured out how > they would benefit from > >>>>>this.> >>>>But> >>>>I was told by eBay that you don't even have to >>>>>click on the links given> >>>> > on> >>>>the phishing site for them to find your password. You just have to > > >>>>OPEN> >>>>a> >>>> > phishing email for them to gain that information. I certainly don't> > >>>>understand> >>>>how they > can do that. I'm opening fewer emails now!> >>>>---Art Heller> >>>> >>>> > >>>> >>> > _______________________________________________> >>> Phono-L mailing list> > >>> http://phono- > l.oldcrank.org> >> >>_______________________________________________> > >>Phono-L mailing list> >> > http://phono-l.oldcrank.org> >> >> >> >> > > _______________________________________________> > > Phono-L mailing list> > http://phono-l.oldcrank.org > > > _______________________________________________> Phono-L mailing list> > http://phono- > l.oldcrank.org_______________________________________________ >>Phono-L mailing list >>http://phono-l.oldcrank.org > > > > > _______________________________________________ > Phono-L mailing list > http://phono-l.oldcrank.org > > > -- > No virus found in this incoming message. > Checked by AVG Free Edition. > Version: 7.5.503 / Virus Database: 269.15.11/1094 - Release Date: > 10/26/2007 8:50 AM >
