[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Asrg] How would SPF or Sender ID stopped this attack

To: Seth Breidbart <sethb at panix.com>
Subject: Re: [Asrg] How would SPF or Sender ID stopped this attack
From: Barry Shein <bzs at world.std.com>
Date: Fri, 30 Jul 2004 22:04:59 -0400
Cc: asrg at ietf.org
In-reply-to: <200407302340.i6UNeQ417708@panix5.panix.com>
List-archive: <http://www1.ietf.org/pipermail/asrg>
List-help: <mailto:asrg-request@ietf.org?subject=help>
List-id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-post: <mailto:asrg@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=unsubscribe>
References: <019001c47682$bbaed600$3201a8c0@rasta> <7DF9D69B5FC4BB449AEFA3B1CCF7BF3525FFA0@exchange.rdcim.com> <16650.54734.139542.144312@world.std.com> <200407302340.i6UNeQ417708@panix5.panix.com>
Sender: asrg-bounces at ietf.org

On July 30, 2004 at 19:40 sethb at panix.com (Seth Breidbart) wrote:
 > Barry Shein <bzs at world.std.com> wrote:
 > 
 > > I'd imagine the best that can be done against phishing would be
 > > something done at the website like you enter a unique username, not
 > > an acct or anything very interesting to a stranger, and the BANK
 > > (e.g.)  should come back with a piece of information set up
 > > previously. So I type in bzs in preparation to actually logging in
 > > and the website should respond with "HADDOCK" and then I proceed, if
 > > not, I'm suspicious.
 > 
 > What stops the phisher from passing your input to the bank and its
 > output back to you (that is, the classis man-in-the-middle attack)?

A fine question, back to the drawing board. The bank only responding
to that query via a secure connections could help which should be the
case anyhow (yes I'm thinking out loud, but isn't that one of the
design goals of secure web communications?)

But I suspect that sort of approach might yield better results than
trying to clean up the email part of the con, for phishing
specifically.

All of these problems and quite a few others (e.g., music piracy) come
down to a similar core problem: We've given people inexpensive, easy
to use, near-perfect printing presses and now we're plagued with
counterfeiting. What a surprise!

-- 
        -Barry Shein

Software Tool & Die    | bzs at TheWorld.com           | http://www.TheWorld.com
Purveyors to the Trade | Voice: 617-739-0202        | Login: 617-739-WRLD
The World              | Public Access Internet     | Since 1989     *oo*

_______________________________________________
Asrg mailing list
Asrg at ietf.org
https://www1.ietf.org/mailman/listinfo/asrg

Follow-Ups:
- Re: [Asrg] How would SPF or Sender ID stopped this attack
  - From: Seth Breidbart

References:
- Re: [Asrg] Re: Anti-spam laws do work, FYI. There's proof.
  - From: David Wall
- [Asrg] How would SPF or Sender ID stopped this attack
  - From: Bill McInnis
- Re: [Asrg] How would SPF or Sender ID stopped this attack
  - From: Barry Shein
- Re: [Asrg] How would SPF or Sender ID stopped this attack
  - From: Seth Breidbart

Prev by Date: Re: [Asrg] Anti-spam laws do work, FYI. There's proof.
Next by Date: Re: [Asrg] Why SPF? (was: Anti-spam laws do work, FYI. There's proof.)
Previous by thread: Re: [Asrg] How would SPF or Sender ID stopped this attack
Next by thread: Re: [Asrg] How would SPF or Sender ID stopped this attack
Index(es):
- Date
- Thread