1. Contracting
    1. General
      1. Brexit
    2. Business / Contracts
      1. Coronavirus Assistance
    3. Accounting / Legal
      1. Umbrella Companies
      2. HMRC Scheme Enquiries
      3. The Future of Contracting
      4. IR35 Reform
    4. Technical
    5. Welcome / FAQs
  2. Social
    1. Light Relief
    2. Social / Events
  • Visitors can check out the Forum FAQ by clicking this link. You have to register before you can post: click the REGISTER link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. View our Forum Privacy Policy.
  • Want to receive the latest contracting news and advice straight to your inbox? Sign up to the ContractorUK newsletter here. Every sign up will also be entered into a draw to WIN £100 Amazon vouchers!

Cash machines

Collapse
X
11 to 20 of 20 Previous 1 2 template Next
Collapse
Reply to Thread
  •  
  • Filter
  • Time
  • Show
Clear All
new posts
11 to 20 of 20 Previous 1 2 template Next
    #11
    Originally posted by AtW View Post
    Pins are just 4 digits - encrypting just them is crazy because it is easy to check less than 10k combinations using plain text attack.
    What are you on about? The article is on about the Server back in the datacentre where you'd think they'd encrypt the PINs so that nosy admin type doesn't have a quick browse through them.
    "I hope Celtic realise that, if their team is good enough, they will win. If they're not good enough, they'll not win - and they can't look at anybody else, whether it is referees or any other influence." - Walter Smith

    On them! On them! They fail!

    Comment

      #12
      Originally posted by Incognito View Post
      For that they're not.
      Only people with no brain think they are the answer to anything

      Comment

        #13
        Originally posted by Peoplesoft bloke View Post
        Only people with no brain think they are the answer to anything
        Are you not dead yet?
        "I hope Celtic realise that, if their team is good enough, they will win. If they're not good enough, they'll not win - and they can't look at anybody else, whether it is referees or any other influence." - Walter Smith

        On them! On them! They fail!

        Comment

          #14
          Originally posted by Incognito View Post
          Are you not dead yet?
          No - have a nice weekend.

          Comment

            #15
            Originally posted by Peoplesoft bloke View Post
            No - have a nice weekend.
            Same to you. I hope your next poo's a hedgehog.
            "I hope Celtic realise that, if their team is good enough, they will win. If they're not good enough, they'll not win - and they can't look at anybody else, whether it is referees or any other influence." - Walter Smith

            On them! On them! They fail!

            Comment

              #16
              Originally posted by AtW View Post
              Pins are just 4 digits - encrypting just them is crazy because it is easy to check less than 10k combinations using plain text attack.
              How would that work? 3 incorrect attempts and strike-out, surely?

              Comment

                #17
                Originally posted by Incognito View Post
                Same to you. I hope your next poo's a hedgehog.
                Charmed I'm sure

                Comment

                  #18
                  Originally posted by Bob Dalek View Post
                  How would that work? 3 incorrect attempts and strike-out, surely?
                  AtW's idea is to try and encrypt each of 4 digit numbers until the encrypted text matches the intercept. However, if the ATM adds some random data before encrypting the PIN (it should), then such attack won't work.

                  /geek_mode off

                  Comment

                    #19
                    Originally posted by Incognito View Post
                    Surely the transaction is encrypted though or could someone just tap in and sniff their traffic?

                    No, it's not encrypted. Nor is the Visa and Mastercard interbank system.
                    "A people that elect corrupt politicians, imposters, thieves and traitors are not victims, but accomplices," George Orwell

                    Comment

                      #20
                      Originally posted by AtW View Post
                      Pins are just 4 digits - encrypting just them is crazy because it is easy to check less than 10k combinations using plain text attack.
                      The banks had a choice of 4 or 6 digits, they opted for 4

                      Your pin number is here... http://www.positiveatheism.org/crt/pin.htm
                      Last edited by Paddy; 30 August 2008, 09:15.
                      "A people that elect corrupt politicians, imposters, thieves and traitors are not victims, but accomplices," George Orwell

                      Comment

                      Reply to Thread
                      11 to 20 of 20 Previous 1 2 template Next

                      Advertisers

                      1. Contracting
                        1. General
                          1. Brexit
                        2. Business / Contracts
                          1. Coronavirus Assistance
                        3. Accounting / Legal
                          1. Umbrella Companies
                          2. HMRC Scheme Enquiries
                          3. The Future of Contracting
                          4. IR35 Reform
                        4. Technical
                        5. Welcome / FAQs
                      2. Social
                        1. Light Relief
                        2. Social / Events
                      Working...
                      X