[ic] Credit Card Info

[Jim Balcom]

On Mon, 5 Nov 2001, Robert Trembath wrote:

RT>>I appreciate your comments and I'm just as concerned about security as
RT>>the next guy,

I spent 20 years in the Army involved in technical and personnel security.
Let's not try to lock horns. And, I'll keep my opinions on this to myself.

RT>>I wrote this list several time about quite a few issues with no answers
RT>>from anyone. I finally had to email someone off-list who I judged to be
RT>>knowledgeable by reading his input to others and he pointed me in the
RT>>right direction. Some people on this list knew how to work around this
RT>>issue and simply didn't post a solution( including those at RH most
RT>>familiar with IC.) This feature was not forced in any previous releases
RT>>prior to 4.7 - 4.8.

The Christians tell me that the Book Of Revelations in their Bible contains
a lot of mysteries and when people try to solve those mysteries they are
told that they can't know the answers because they are not 'ready to know'
the answers.

And, so it is with this issue - when you are ready to know the answer you
won't have to ask. You kept asking questions that you weren't ready to have
the answers to.

RT>>Something that could've been resolved in ten minutes took days because
RT>>no one stepped forward to present the solution or a direction to a
RT>>solution. That cost me time and money. IC represents less than 10% of my
RT>>income as a consultant and when I have to dig this hard to get a simple
RT>>answer its nothing but discouraging.

Why did it take days for you to solve it? I would be VERY embarassed to
admit that! It's such an easy fix! It took me all of 3 minutes!

It shouldn't be discouraging. It should be a challenge that causes you to
learn the necessary foundation (no pun intended) that you need to understand
the situation and to give your customers their money's worth.

RT>>Why flame developers for choosing not to use encryption where its not
RT>>needed. Warning them is wise and good. Calling them stupid is wrong. You
RT>>use IC your way and we'll use it ours. That's called open source. Thanks

Ya know, that scares the snot out of me!!!!!

I think it's horrible that I've got customers that won't upgrade their
browsers to deal with my 128-bit security. They don't give a shit.

But, here you have customers that are using 128-bit security to give you
their data and then you are spreading their data to the 4 winds and
violating the trust that they have placed in you. A false sense of security
for them.

A parallel: You go into K-Mart and buy something. The clerk captures your
card number when he swipes it. He immediately sells that number to a network
of 1000 people that all use that number nearly simultaneously. The trust
that you thought that you deserved has been grossly violated!

And, the multiplier: You put that work-around out here on the mailing list!
Now, there are 100's of networks of 1000 people with your number making
charges on your account.

I'm an old man, maybe senile, maybe with Alzheimers, maybe....
But, something that I learned a LONG time ago is that if something is really
difficult to get ahold of then I wasn't meant to have it. And, it seems that
anytime that I push the envelope and get it anyways that i get my knuckles
rapped - it doesn't work, for one reason or another.

IMHO you forced your way into an area that you weren't meant to be in,
weren't ready to be in. Once in there you hadn't learned enough yet to
properly handle what you had learned and you blew it. Like a rich uncle
dying and leaving you a million dollars and you head for Vegas and 5 days
later you are stone broke.

It's quite fortunate that I don't have your customer list!

-= Jim =-

----------------------------------------------------------------
Jim's Linux-Operated Underground Bomb Shelter

Tagline for Monday, November 05, 2001 at 19:05 PM:
Famous last words - You and what army?

----------------------------------------------------------------
This Linux System has been up 249 hours

My web page: http://www.idk-enterprises.com
----------------------------------------------------------------