lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Thu, 12 Aug 2004 16:34:44 -0700 From: Lance James <lancej@...urescience.net> To: joe@...ompiled.org Cc: bugtraq@...urityfocus.com Subject: Re: SSC Advisory TSA-051 (T-mobile wireless and Verizon Northwest) Joe Eversole wrote: > On Wed, 11 Aug 2004 14:10:18 -0700, Secure Science Corporation > Advisory Notice <bugtraq@...urescience.net> wrote: > > >>Solution: >>- --------- >>Add 2-factor authentication (passcode requirement) by default and cease >>implicit trust of Caller-ID information. > > > T-Mobile's messaging system (in Indianapolis, at least. I do not know > if they have migrated to a single VM system) has a setting the user > can specify to require passcode when calling from mobile phone. Hence, by default! It is not on by default. > > --je > > -- Best Regards, Lance James Secure Science Corporation www.securescience.com
Powered by blists - more mailing lists