[2602] in cryptography@c2.net mail archive
Re: safety of SSL 2?
daemon@ATHENA.MIT.EDU (John R Levine)
Tue Apr 28 22:22:57 1998
Date: Tue, 28 Apr 1998 21:40:40 -0400 (EDT)
From: John R Levine <johnl@iecc.com>
To: "Marcus J. Ranum" <mjr@nfr.net>
cc: cryptography@c2.net
In-Reply-To: <3.0.3.32.19980428160439.00694fc8@mail.clark.net>
> The bulk of the fraud is apparently stolen credit cards being used
> to purchase online services (since there's no shipping address). This
> is really hitting ISPs and online porn merchants. ...
> It's interesting because shipping address is used to 'authenticate' a
> lot of current credit card transactions. In an address-less environment,
> that logic doesn't work. ...
Well, I'm confused. There's no reason they can't ask for the billing address
for verification, and many on-line sites do. Somthing smells fishy here.
Regards,
John Levine, johnl@iecc.com, Primary Perpetrator of "The Internet for Dummies",
Information Superhighwayman wanna-be, http://iecc.com/johnl, Sewer Commissioner
Finger for PGP key, f'print = 3A 5B D0 3F D9 A0 6A A4 2D AC 1E 9E A6 36 A3 47
