Skip to main content

View Diary: Everything you don't want to know about the NSA & didn't ask (208 comments)

Comment Preferences

  •  PINs and passwords (14+ / 0-)

    PINs and passwords only confer the facade of security in so many cases. In just about all cases, if a technically knowledgeable person has physical access to the "secured" system, it is often trivial to access the data without bothering with trying to compromise the password. The NSA has physical access across the board and the best crypto-busting capabilities  on the planet.
    With email, you don't need to even know the person's password if you just intercept all SMTP traffic!
    You don't need to know PINs if the telecoms export their billing data at least daily!
    SSL connections mean nothing when you have servers co-located in all major ISPs and the data streams are copied to those NSA servers. Hell, SSL security can be broken by script kiddies due to known vulnerabilities.
    I intercept and store email all the time at work. Don't need to know any passwords at all. I have a device that I divert SMTP traffic to and it stores all of the incoming emails before it passes that data to the mail server. I can read anyone's email that I want to no matter what the passwords are or how often they change.

    +++ The law is a weapon used to bludgeon us peasants into submission. It is not to be applied to the monied elite.

    by cybersaur on Sun Jun 16, 2013 at 09:37:27 AM PDT

    [ Parent ]

Subscribe or Donate to support Daily Kos.

Click here for the mobile view of the site