Forum post of the day: Rage against the authenticator

Reader Comments (Page 1 of 1)

6-29-2008 @ 10:53AM

Pzychotix said...

You honestly have no idea what you're talking about Feldur. A man in the middle attack would do about the same as a keylogger: You log in to the fake server, pass them your info, and then they would use this info to log into your account.

The problem with this is that they still can't generate your one-time code, which changes every 60 seconds. Unless they were sitting there, logging in THE MOMENT you gave them the info, they'd be SOL.

Add your comments

Your comments:

Remember me

E-Mail me when someone replies to this comment

Please keep your comments relevant to this blog entry. Email addresses are never displayed, but they are required to confirm your comments.

When you enter your name and email address, you'll be sent a link to confirm your comment, and a password. To leave another comment, just use that password.

To create a live link, simply type the URL (including http://) or email address and we will make it a live link for you. You can put up to 3 URLs in your comments. Line breaks and paragraphs are automatically converted — no need to use <p> or <br /> tags.