Hello Jernej, On Wed, 17 Sep 2008 22:19:08 +0200 GMT (18/09/2008, 03:19 +0700 GMT), Jernej Simončič wrote:
>> True. But the eavesdropper needs to have physical access to the >> appropriate cable at least once, while email can be hacked remotely. JS> Which is much easier to get than you imagine - most buildings have the JS> phone exchange somewhere in the basement, and it's usually not hard to JS> get to it. Then you just need to tap the appropriate line (which is JS> harder if you don't know the line number in advance, as these places JS> often have several hundred lines going through). Yes, anything is possible for a dedicated criminal or legal agency. My point was the physical access, which means somebody has to be there. With hacking on the internet, the criminal can be anywhere in the world. JS> Anyway, e-mail is not a secure way to transfer credit card details, JS> unless you encrypt it with the recipient's certificate. JS> The point I was trying to make is that most retailers that have online JS> shops usually have a single database for orders, so it doesn't matter JS> in what way you get your credit card details to them - it'll end up in JS> the same place anyway. And this is the database that must be kept JS> secure (and practically the only source from which an attacker could JS> gain the card number from - all major breaches so far happened because JS> this database wasn't secured properly). We agree on this. >> For the technology yes. However, I would believe that the number of >> hackers connecting their fax machines (or software equivalent) to >> other people's phone/fax lines is less than those intercepting IP >> traffic remotely. That's just a guess, I have no figures. JS> You can't intercept IP traffic that doesn't pass through a system JS> under your control. But then, a dedicated criminal can bring a system under his control from anywhere in the world. Maybe he can just spy out the password that opens the information to him. Are we moving in circles yet? ;-) -- Cheers, Thomas. My husband and I divorced over religious differences. He thought he was God and I didn't. http://thomas.fernandez.hat-gar-keine-homepage.de/ Message reply created with The Bat! 4.0.28.4 under Windows XP 5.1 Build 2600 Service Pack 2 ________________________________________________ Current version is 4.0.24.0 | 'Using TBUDL' information: http://www.silverstones.com/thebat/TBUDLInfo.html
