Home page logo
/

bugtraq logo Bugtraq mailing list archives

Re: SSC Advisory TSA-051 (T-mobile wireless and Verizon Northwest)
From: Lance James <lancej () securescience net>
Date: Thu, 12 Aug 2004 16:34:44 -0700

Joe Eversole wrote:
On Wed, 11 Aug 2004 14:10:18 -0700, Secure Science Corporation
Advisory Notice <bugtraq () securescience net> wrote:


Solution:
- ---------
Add 2-factor authentication (passcode requirement) by default and cease
implicit trust of Caller-ID information.


T-Mobile's messaging system (in Indianapolis, at least. I do not know
if they have migrated to a single VM system) has a setting the user
can specify to require passcode when calling from mobile phone.

Hence, by default! It is not on by default.



--je




--
Best Regards,
Lance James
Secure Science Corporation
www.securescience.com


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]