[Reposting because my previous reply to this message was set to the wrong From address.] On 17/10/2018 17:39, Grant Taylor via cctalk wrote: > Remember that it is possible to spoof or hijack SMS / phone numbers. So > don't rely on just that for security.
Good point. As far as I can tell, there's no way of securing communications with a purely SMS-based approach. Maybe voice fingerprinting and authentication for each request..? I can already smell feature creep. -- OpenPGP key: EB28 0338 28B7 19DA DAB0 B193 D21D 996E 883B E5B9