Re: Have I been hacked?

To: debian-user@lists.debian.org
Subject: Re: Have I been hacked?
From: Iain M Conochie <iain@thargoid.co.uk>
Date: Sun, 11 Jan 2015 23:53:55 +0000
Message-id: <[🔎] 54B30D13.3080401@thargoid.co.uk>
In-reply-to: <[🔎] 20150111164409818718141.NoCcsPlease@bob.proulx.com>
References: <[🔎] 20150106180456.GA8657@fever.havannah.local> <[🔎] 7851846.GjTCVcmPuo@merkaba> <[🔎] 09012015001632.a7c9236b8b1d@desktop.copernicus.demon.co.uk> <[🔎] 3714920.DLpo8KHxcl@merkaba> <[🔎] CAAr43iMgLrUtSiitri17xOTaZ0Qvwip5eYMc1Z-Q+vSd_SSteg@mail.gmail.com> <[🔎] 54B08C3D.4090404@gmail.com> <[🔎] 10012015194257.e68f933cee76@desktop.copernicus.demon.co.uk> <[🔎] 54B2FA07.80001@thargoid.co.uk> <[🔎] 20150111164409818718141.NoCcsPlease@bob.proulx.com>


On 11/01/15 23:47, Bob Proulx wrote:

Iain M Conochie wrote:

These increase in security as you go higher up the number. So (assuming the
implementation is secure) my fingerprint (being something I am) is more
secure than a password. Also, an ssh-key (being something I have) is more
secure than a password.

Concerning fingerprints and other biometrics for security...

   I am sorry to disclose that our site had a security breach.
   Please change your fingerprints to a new secure fingerprint before
   using the site.

Hmm...  I think I would much rather change my password.

Bob

Hence assuming the implementation is secure. When you use more secureauthentication factors, the ability of the remote system to keep themsecure needs to be higher. In other words, you have to _trust_ theremote site to be able to keep your unique data secure.


Iain

Reply to:

References:
- Have I been hacked?
  - From: Danny <mynixmail@gmail.com>
- Re: Have I been hacked?
  - From: Martin Steigerwald <Martin@lichtvoll.de>
- Re: Have I been hacked?
  - From: Brian <ad44@cityscape.co.uk>
- Re: Have I been hacked?
  - From: Martin Steigerwald <Martin@lichtvoll.de>
- Re: Have I been hacked?
  - From: Joel Rees <joel.rees@gmail.com>
- Re: Have I been hacked?
  - From: Jerry Stuckle <stucklejerry@gmail.com>
- Re: Have I been hacked?
  - From: Brian <ad44@cityscape.co.uk>
- Re: Have I been hacked?
  - From: Iain M Conochie <iain@thargoid.co.uk>
- Re: Have I been hacked?
  - From: Bob Proulx <bob@proulx.com>

Prev by Date: Re: Have I been hacked?
Next by Date: Wheezy boot stops, leaving machine unreachable
Previous by thread: Re: Have I been hacked?
Next by thread: Re: Have I been hacked?
Index(es):
- Date
- Thread