[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Fwd: [atlarge-discuss] WHAT MOST MEMBERS WANT]

To: Sotiris Sotiropoulos <sotiris@hermesnetwork.com>
Subject: Re: [Fwd: [atlarge-discuss] WHAT MOST MEMBERS WANT]
From: Jeff Williams <jwkckid1@ix.netcom.com>
Date: Sun, 13 Apr 2003 13:59:37 -0700
Cc: atlarge-discuss@lists.fitug.de
Delivered-to: mailing list atlarge-discuss@lists.fitug.de
List-help: <mailto:atlarge-discuss-help@lists.fitug.de>
List-post: <mailto:atlarge-discuss@lists.fitug.de>
List-subscribe: <mailto:atlarge-discuss-subscribe@lists.fitug.de>
List-unsubscribe: <mailto:atlarge-discuss-unsubscribe@lists.fitug.de>
Mailing-list: contact atlarge-discuss-help@lists.fitug.de; run by ezmlm
Organization: INEGroup Spokesman
References: <3E9941F5.7F40F83F@ix.netcom.com> <55952.206.130.170.10.1050255045.squirrel@www.hermesnetwork.com>

Sotiris and all fellow members,

Sotiris Sotiropoulos wrote:

> > Sotiris and all fellow members,
> >
> >   This approach is a good one Sotiris but a few very important
> > concerns remain.  Here are a couple of them.
> >
> >   How does your prospective system consider the following:
> >
> > 1.) Multiple logins from the same individual using many different
> > E-Mail addresses
>
> This can be guarded against by logging the IP address of each user when
> they create their account.

  The problem with this approach is that some ISP's use rotating IP
addresses when a customer/client connects.  Therefore not the same
IP address is used.

>  Not the best safeguard, but better than the
> email only approach.

  Yes.  Won't work as a matter of fact. See above.

>
>
> > 2.) Secure against Man in the middle hack attempts.
>
> Please explain, I don't know what you mean.

  Man in the middle attacks are very common.  In fact the most common
type of hack.  There are variations of "Man in the Middle" attacks of
course
but they are variations on the same method.  E-Mail, FTP, and IRC are
common prey for hackers using "Man in the Middle" attacks.  Those
types of attacks are when a hacker monitoring a IP address, a specific
set of logins or even both in groups swaps in by attaching to that IP
address
or capturing that login of that person/user.  See IETF, or SANS for
much more information of types of "Man in the Middle" hacker attacks.

>
>
> Sotiris

Regards,
--
Jeffrey A. Williams
Spokesman for INEGroup LLA. - (Over 129k members/stakeholders strong!)
================================================================
CEO/DIR. Internet Network Eng. SR. Eng. Network data security
Information Network Eng. Group. INEG. INC.
E-Mail jwkckid1@ix.netcom.com
Contact Number: 214-244-4827 or 214-244-3801

---------------------------------------------------------------------
To unsubscribe, e-mail: atlarge-discuss-unsubscribe@lists.fitug.de
For additional commands, e-mail: atlarge-discuss-help@lists.fitug.de

References:
- Re: [Fwd: [atlarge-discuss] WHAT MOST MEMBERS WANT]
  - From: Jeff Williams <jwkckid1@ix.netcom.com>
- Re: [Fwd: [atlarge-discuss] WHAT MOST MEMBERS WANT]
  - From: "Sotiris Sotiropoulos" <sotiris@hermesnetwork.com>

Prev by Date: Re: [Fwd: [atlarge-discuss] WHAT MOST MEMBERS WANT]
Next by Date: Re: [Fwd: [atlarge-discuss] WHAT MOST MEMBERS WANT]
Previous by thread: Re: [Fwd: [atlarge-discuss] WHAT MOST MEMBERS WANT]
Next by thread: Re: [Fwd: [atlarge-discuss] WHAT MOST MEMBERS WANT]
Index(es):
- Date
- Thread