while comtemplating more secure login method then the standard username/password
combination I had the following ideas:
One would think that an account that holds value or financial records would need to be
a little more secure then say a simple e-mail account.
In addition to the username/password combination, sites would be better off if they
embedded a random 6-8 digits character string into an image and asked for the user to
type it in. This would prevent brute force attacks. Also, this would prevent peoples
accounts being locked due to large numbers of invalid login attempts.
Also, a four digit pin number that didn't need to be typed in but has to be selected
for four seperate drop down menu's would prevent people from using the trojan viruses
that we hear people complain about from time to time.
Yes the above methods would make automation a little more difficult, but that would
force companies like e-gold to know who is automating their system and provide them
with say a special access string so they can continue to do so.
Khurram Khan
_____________________________________________________________
Get email for your site ---> http://www.everyone.net
---
You are currently subscribed to e-gold-list as: archive@jab.org
To unsubscribe send a blank email to [EMAIL PROTECTED]
