Not only that, I would hazard to guess the majority of the fraud out there is from people with access to hundreds, if not thousands, or tens of thousands of valid credit card numbers and card holder information.
These people could easily sign up 10 accounts at every VOIP provider in existence and still not be detected even with such a system in place. On Sun, 2005-06-19 at 15:03 -0700, snacktime wrote: > > > > Why not doing something easier > > Just for example making a blacklist-e164.org domain and putting > > the offending numbers with a redirection to nowhere for example > > As like RBLS's for emails > > So anybody can use it > > Just so people know. You can't run a service like that where you > store cardholder related data (and that includes a hash of the card > number) without being a registered third pary provider with Visa. > That entails going through a security audit once a year done by an > approved auditing company, and of course having a network that meets > the criteria. It's not cheap and it takes a considerable amount of > time. For us, the biggest thing was all the written policies and > documentation they require, but if you don't have the network in place > that will be a considerable cost also. Two factor authentication is > required for local and remote admin access, data backups have to be > made at regular intervals and archived off site, etc.. > > Chris > _______________________________________________ > Asterisk-Biz mailing list > Asterisk-Biz@lists.digium.com > http://lists.digium.com/mailman/listinfo/asterisk-biz -- Mike Benoit <[EMAIL PROTECTED]>
signature.asc
Description: This is a digitally signed message part
_______________________________________________ Asterisk-Biz mailing list Asterisk-Biz@lists.digium.com http://lists.digium.com/mailman/listinfo/asterisk-biz
