Prev: UNMATCH NEAR MATCH??
Next: Q2010 Backup Files
From: Mr.Jan on 20 Feb 2010 18:19 On Feb 20, 6:02 pm, Notan <notan(a)ddressthatcanbespammed> wrote: > On 2/20/2010 3:55 PM, Mr.Jan wrote: > > > > > On Feb 20, 10:12 am, Notan<notan(a)ddressthatcanbespammed> wrote: > >> On 2/20/2010 7:29 AM, Mr.Jan wrote: > > >>> On Feb 20, 7:35 am, "Mr.Jan"<jan.hertz...(a)gmail.com> wrote: > >>>> On Feb 19, 8:09 pm, JimH<J...(a)invalid.net> wrote: > > >>>>> Sharx35 wrote: > > >>>>>> Keeping a key hidden ANYWHERE outside is just plain foolish. The > >>>>>> professionals KNOW 99% of the time where the hiding places are. > > >>>>> Professionals don't need a key. But, for the amateurs out there, my key > >>>>> is inside a fake rock. Luckily, I've got about a million rocks. > > >>>>> -- > >>>>> Jim > > >>>> I was reading Ted"s "Here's a buck, go buy a clue" remark. Seems a bit > >>>> tight for a conversational board like this. I think somebody needs a > >>>> hug! > > >>> I just checked Mint.com and made a few changes. If you get my user id > >>> and password, you can see my transactions, my balances, and which > >>> financial institutions. You can't log in to any accounts (Yodlee > >>> allows this) and you can't see any account numbers. I edited a couple > >>> of account names where the institution had my name in the alias they > >>> were using and my 401K because it had my company name. I repeat, I > >>> don't care if somebody sees my amounts and institutions as long as > >>> they can't identify me. > > >> What about the folks at Mint.com? > > >> While the site currently does not allow any payments, transfers, etc. > >> to be made, the information you've supplied is the same that *can* be > >> used for such transactions, should it fall into the wrong hands. > > > So you assume a rogue employee at Mint.com (about to be Quicken > > online) will steal your login information? Interesting but not the > > point of what I was saying. My concern has always been the more > > likely scenario that my password is compromised. That could be as > > simple as someone looking over my shoulder when I am momentarily not > > paying attention. In that event, they would only see the information I > > mentioned above. > > > Mint does background checks on their employees just like your bank and > > encrypts all the information you pass along. This isn't exactly > > available to the night cleaning staff. > > You've got a lot more faith in the unknown than I do. Not so much unknown. I read the information they post explaining the security they have in place and I have some faith that they are telling me the truth. Sooner or later somebody is going to figure out a way of hacking them. Look what happened to banks when they first went online. Still, somebody out there is not mailing his or her bills because they don't trust the letter carrier. Sometimes, they are right!
From: Notan on 20 Feb 2010 18:30 On 2/20/2010 4:19 PM, Mr.Jan wrote: > On Feb 20, 6:02 pm, Notan<notan(a)ddressthatcanbespammed> wrote: >> On 2/20/2010 3:55 PM, Mr.Jan wrote: >> >> >> >>> On Feb 20, 10:12 am, Notan<notan(a)ddressthatcanbespammed> wrote: >>>> On 2/20/2010 7:29 AM, Mr.Jan wrote: >> >>>>> On Feb 20, 7:35 am, "Mr.Jan"<jan.hertz...(a)gmail.com> wrote: >>>>>> On Feb 19, 8:09 pm, JimH<J...(a)invalid.net> wrote: >> >>>>>>> Sharx35 wrote: >> >>>>>>>> Keeping a key hidden ANYWHERE outside is just plain foolish. The >>>>>>>> professionals KNOW 99% of the time where the hiding places are. >> >>>>>>> Professionals don't need a key. But, for the amateurs out there, my key >>>>>>> is inside a fake rock. Luckily, I've got about a million rocks. >> >>>>>>> -- >>>>>>> Jim >> >>>>>> I was reading Ted"s "Here's a buck, go buy a clue" remark. Seems a bit >>>>>> tight for a conversational board like this. I think somebody needs a >>>>>> hug! >> >>>>> I just checked Mint.com and made a few changes. If you get my user id >>>>> and password, you can see my transactions, my balances, and which >>>>> financial institutions. You can't log in to any accounts (Yodlee >>>>> allows this) and you can't see any account numbers. I edited a couple >>>>> of account names where the institution had my name in the alias they >>>>> were using and my 401K because it had my company name. I repeat, I >>>>> don't care if somebody sees my amounts and institutions as long as >>>>> they can't identify me. >> >>>> What about the folks at Mint.com? >> >>>> While the site currently does not allow any payments, transfers, etc. >>>> to be made, the information you've supplied is the same that *can* be >>>> used for such transactions, should it fall into the wrong hands. >> >>> So you assume a rogue employee at Mint.com (about to be Quicken >>> online) will steal your login information? Interesting but not the >>> point of what I was saying. My concern has always been the more >>> likely scenario that my password is compromised. That could be as >>> simple as someone looking over my shoulder when I am momentarily not >>> paying attention. In that event, they would only see the information I >>> mentioned above. >> >>> Mint does background checks on their employees just like your bank and >>> encrypts all the information you pass along. This isn't exactly >>> available to the night cleaning staff. >> >> You've got a lot more faith in the unknown than I do. > > Not so much unknown. I read the information they post explaining the > security they have in place and I have some faith that they are > telling me the truth. Sooner or later somebody is going to figure out > a way of hacking them. Look what happened to banks when they first > went online. Still, somebody out there is not mailing his or her bills > because they don't trust the letter carrier. Sometimes, they are > right! While Intuit might be well established as far as good security goes, the cloud isn't. For the foreseeable future, I'll keep my financial data on the ground. -- Notan
From: Mr.Jan on 20 Feb 2010 21:25 On Feb 20, 6:30 pm, Notan <notan(a)ddressthatcanbespammed> wrote: > On 2/20/2010 4:19 PM, Mr.Jan wrote: > > > > > On Feb 20, 6:02 pm, Notan<notan(a)ddressthatcanbespammed> wrote: > >> On 2/20/2010 3:55 PM, Mr.Jan wrote: > > >>> On Feb 20, 10:12 am, Notan<notan(a)ddressthatcanbespammed> wrote: > >>>> On 2/20/2010 7:29 AM, Mr.Jan wrote: > > >>>>> On Feb 20, 7:35 am, "Mr.Jan"<jan.hertz...(a)gmail.com> wrote: > >>>>>> On Feb 19, 8:09 pm, JimH<J...(a)invalid.net> wrote: > > >>>>>>> Sharx35 wrote: > > >>>>>>>> Keeping a key hidden ANYWHERE outside is just plain foolish. The > >>>>>>>> professionals KNOW 99% of the time where the hiding places are. > > >>>>>>> Professionals don't need a key. But, for the amateurs out there, my key > >>>>>>> is inside a fake rock. Luckily, I've got about a million rocks. > > >>>>>>> -- > >>>>>>> Jim > > >>>>>> I was reading Ted"s "Here's a buck, go buy a clue" remark. Seems a bit > >>>>>> tight for a conversational board like this. I think somebody needs a > >>>>>> hug! > > >>>>> I just checked Mint.com and made a few changes. If you get my user id > >>>>> and password, you can see my transactions, my balances, and which > >>>>> financial institutions. You can't log in to any accounts (Yodlee > >>>>> allows this) and you can't see any account numbers. I edited a couple > >>>>> of account names where the institution had my name in the alias they > >>>>> were using and my 401K because it had my company name. I repeat, I > >>>>> don't care if somebody sees my amounts and institutions as long as > >>>>> they can't identify me. > > >>>> What about the folks at Mint.com? > > >>>> While the site currently does not allow any payments, transfers, etc.. > >>>> to be made, the information you've supplied is the same that *can* be > >>>> used for such transactions, should it fall into the wrong hands. > > >>> So you assume a rogue employee at Mint.com (about to be Quicken > >>> online) will steal your login information? Interesting but not the > >>> point of what I was saying. My concern has always been the more > >>> likely scenario that my password is compromised. That could be as > >>> simple as someone looking over my shoulder when I am momentarily not > >>> paying attention. In that event, they would only see the information I > >>> mentioned above. > > >>> Mint does background checks on their employees just like your bank and > >>> encrypts all the information you pass along. This isn't exactly > >>> available to the night cleaning staff. > > >> You've got a lot more faith in the unknown than I do. > > > Not so much unknown. I read the information they post explaining the > > security they have in place and I have some faith that they are > > telling me the truth. Sooner or later somebody is going to figure out > > a way of hacking them. Look what happened to banks when they first > > went online. Still, somebody out there is not mailing his or her bills > > because they don't trust the letter carrier. Sometimes, they are > > right! > > While Intuit might be well established as far as good security goes, > the cloud isn't. > > For the foreseeable future, I'll keep my financial data on the ground. > > -- > > Notan I understand completely. One can only do what one is comfortable doing. I have found a couple of things to be changed based on our discussions but internet security is a never changing process. Thanks
From: Notan on 20 Feb 2010 21:29 On 2/20/2010 7:25 PM, Mr.Jan wrote: > On Feb 20, 6:30 pm, Notan<notan(a)ddressthatcanbespammed> wrote: >> On 2/20/2010 4:19 PM, Mr.Jan wrote: >> >> >> >>> On Feb 20, 6:02 pm, Notan<notan(a)ddressthatcanbespammed> wrote: >>>> On 2/20/2010 3:55 PM, Mr.Jan wrote: >> >>>>> On Feb 20, 10:12 am, Notan<notan(a)ddressthatcanbespammed> wrote: >>>>>> On 2/20/2010 7:29 AM, Mr.Jan wrote: >> >>>>>>> On Feb 20, 7:35 am, "Mr.Jan"<jan.hertz...(a)gmail.com> wrote: >>>>>>>> On Feb 19, 8:09 pm, JimH<J...(a)invalid.net> wrote: >> >>>>>>>>> Sharx35 wrote: >> >>>>>>>>>> Keeping a key hidden ANYWHERE outside is just plain foolish. The >>>>>>>>>> professionals KNOW 99% of the time where the hiding places are. >> >>>>>>>>> Professionals don't need a key. But, for the amateurs out there, my key >>>>>>>>> is inside a fake rock. Luckily, I've got about a million rocks. >> >>>>>>>>> -- >>>>>>>>> Jim >> >>>>>>>> I was reading Ted"s "Here's a buck, go buy a clue" remark. Seems a bit >>>>>>>> tight for a conversational board like this. I think somebody needs a >>>>>>>> hug! >> >>>>>>> I just checked Mint.com and made a few changes. If you get my user id >>>>>>> and password, you can see my transactions, my balances, and which >>>>>>> financial institutions. You can't log in to any accounts (Yodlee >>>>>>> allows this) and you can't see any account numbers. I edited a couple >>>>>>> of account names where the institution had my name in the alias they >>>>>>> were using and my 401K because it had my company name. I repeat, I >>>>>>> don't care if somebody sees my amounts and institutions as long as >>>>>>> they can't identify me. >> >>>>>> What about the folks at Mint.com? >> >>>>>> While the site currently does not allow any payments, transfers, etc. >>>>>> to be made, the information you've supplied is the same that *can* be >>>>>> used for such transactions, should it fall into the wrong hands. >> >>>>> So you assume a rogue employee at Mint.com (about to be Quicken >>>>> online) will steal your login information? Interesting but not the >>>>> point of what I was saying. My concern has always been the more >>>>> likely scenario that my password is compromised. That could be as >>>>> simple as someone looking over my shoulder when I am momentarily not >>>>> paying attention. In that event, they would only see the information I >>>>> mentioned above. >> >>>>> Mint does background checks on their employees just like your bank and >>>>> encrypts all the information you pass along. This isn't exactly >>>>> available to the night cleaning staff. >> >>>> You've got a lot more faith in the unknown than I do. >> >>> Not so much unknown. I read the information they post explaining the >>> security they have in place and I have some faith that they are >>> telling me the truth. Sooner or later somebody is going to figure out >>> a way of hacking them. Look what happened to banks when they first >>> went online. Still, somebody out there is not mailing his or her bills >>> because they don't trust the letter carrier. Sometimes, they are >>> right! >> >> While Intuit might be well established as far as good security goes, >> the cloud isn't. >> >> For the foreseeable future, I'll keep my financial data on the ground. >> >> -- >> >> Notan > > I understand completely. One can only do what one is comfortable > doing. I have found a couple of things to be changed based on our > discussions but internet security is a never changing process. Thanks "a never changing process" or "an ever changing process?"
From: Mr.Jan on 21 Feb 2010 08:20
On Feb 20, 9:29 pm, Notan <notan(a)ddressthatcanbespammed> wrote: > On 2/20/2010 7:25 PM, Mr.Jan wrote: > > > > > On Feb 20, 6:30 pm, Notan<notan(a)ddressthatcanbespammed> wrote: > >> On 2/20/2010 4:19 PM, Mr.Jan wrote: > > >>> On Feb 20, 6:02 pm, Notan<notan(a)ddressthatcanbespammed> wrote: > >>>> On 2/20/2010 3:55 PM, Mr.Jan wrote: > > >>>>> On Feb 20, 10:12 am, Notan<notan(a)ddressthatcanbespammed> wrote: > >>>>>> On 2/20/2010 7:29 AM, Mr.Jan wrote: > > >>>>>>> On Feb 20, 7:35 am, "Mr.Jan"<jan.hertz...(a)gmail.com> wrote: > >>>>>>>> On Feb 19, 8:09 pm, JimH<J...(a)invalid.net> wrote: > > >>>>>>>>> Sharx35 wrote: > > >>>>>>>>>> Keeping a key hidden ANYWHERE outside is just plain foolish. The > >>>>>>>>>> professionals KNOW 99% of the time where the hiding places are.. > > >>>>>>>>> Professionals don't need a key. But, for the amateurs out there, my key > >>>>>>>>> is inside a fake rock. Luckily, I've got about a million rocks. > > >>>>>>>>> -- > >>>>>>>>> Jim > > >>>>>>>> I was reading Ted"s "Here's a buck, go buy a clue" remark. Seems a bit > >>>>>>>> tight for a conversational board like this. I think somebody needs a > >>>>>>>> hug! > > >>>>>>> I just checked Mint.com and made a few changes. If you get my user id > >>>>>>> and password, you can see my transactions, my balances, and which > >>>>>>> financial institutions. You can't log in to any accounts (Yodlee > >>>>>>> allows this) and you can't see any account numbers. I edited a couple > >>>>>>> of account names where the institution had my name in the alias they > >>>>>>> were using and my 401K because it had my company name. I repeat, I > >>>>>>> don't care if somebody sees my amounts and institutions as long as > >>>>>>> they can't identify me. > > >>>>>> What about the folks at Mint.com? > > >>>>>> While the site currently does not allow any payments, transfers, etc. > >>>>>> to be made, the information you've supplied is the same that *can* be > >>>>>> used for such transactions, should it fall into the wrong hands. > > >>>>> So you assume a rogue employee at Mint.com (about to be Quicken > >>>>> online) will steal your login information? Interesting but not the > >>>>> point of what I was saying. My concern has always been the more > >>>>> likely scenario that my password is compromised. That could be as > >>>>> simple as someone looking over my shoulder when I am momentarily not > >>>>> paying attention. In that event, they would only see the information I > >>>>> mentioned above. > > >>>>> Mint does background checks on their employees just like your bank and > >>>>> encrypts all the information you pass along. This isn't exactly > >>>>> available to the night cleaning staff. > > >>>> You've got a lot more faith in the unknown than I do. > > >>> Not so much unknown. I read the information they post explaining the > >>> security they have in place and I have some faith that they are > >>> telling me the truth. Sooner or later somebody is going to figure out > >>> a way of hacking them. Look what happened to banks when they first > >>> went online. Still, somebody out there is not mailing his or her bills > >>> because they don't trust the letter carrier. Sometimes, they are > >>> right! > > >> While Intuit might be well established as far as good security goes, > >> the cloud isn't. > > >> For the foreseeable future, I'll keep my financial data on the ground. > > >> -- > > >> Notan > > > I understand completely. One can only do what one is comfortable > > doing. I have found a couple of things to be changed based on our > > discussions but internet security is a never changing process. Thanks > > "a never changing process" or "an ever changing process?" Ah. You have caught me with a typo. I am so embarrassed. That single typo could have cause millions of our readers to lapse into complacency thinking that internet security never changed and they were, therefore, perpetually safe by doing nothing! I meant ever changing, and that was a very good catch! Thank you. |