[Olpc-socal] [support-gang] Caryl's Been Hacked. Don't open any messages from her unless the subject is something you know is from her! Maybe me too!
James Cameron
quozl at laptop.org
Mon Jun 18 01:22:07 EDT 2012
On Mon, Jun 18, 2012 at 12:21:00AM -0400, Kevin Mark wrote:
> On Sun, Jun 17, 2012 at 01:16:54PM -0700, Edward Bigenho wrote:
> Yup, the first clue with 'no subject' and the content was too short ;)
> time for a longer password :)
If you are suggesting that the intrusion was due to a short password,
I think not.
The pattern of spread for this intrusion has been clicking on a link
in mail, being prompted for your password, and typing it in without
realising that you are actually talking to a third-party web site, and
not the service you intended to log in to. The password is then
captured and abused.
A longer password does not do anything for that. I advise against
choosing a longer password without knowing for sure that it was the
shortness of the password that contributed to the problem.
Instead, check that what you are typing your password into ... is the
site that deserves to be given it. Looking at the web browser page is
not enough, one should also look carefully at the location, or URL.
--
James Cameron
http://quozl.linux.org.au/
More information about the OLPC-SoCal
mailing list