On Thu, Mar 22, 2001 at 01:36:23AM +0100, Lukasz Luzar wrote:
>
> How does it work ?
> ==================
>
> When you want to log into the server from an untrusted network,
> then you send a SMS message with your real login and password
> (e.g. "john 12blah45") in the body of message to the GSM phone
> connected to the server.
Surely this means that anyone who gets tempory access to your
mobile phone only needs to look at the outgoing messages which
are left stored in your phone to find your plain-text
username/password? Considering the places people leave their
phones - this seems like a bad idea.
--
TFM
