<html><body bgcolor="#FFFFFF"><div><br></div><div>Now lots of this is changing with PCI and other regulations. FTP has been changed to sftp or FTP over an encrypted channel.</div><div><br></div><div>With PCI all people with credit card data (names, accounts, pin/cvv, etc) has to encrypt the data at rest (sitting on disk, tape. Etc) and has to log everyone that accesses it.</div>
<div><br></div><div>Now that a given large company/bank/credit card processor has a file open against them doesn't mean anything. I would bet that anyone of these has a file for investigation open at any given time.</div>
<div><br></div><div>Let's say amazon has a file open. Well there might have been some fraud and the obvious common point is they all bought stuff from amazon. Hey who hasn't? Now as they investigate the fraud case they fond out that all shopped at <a href="http://walmart.com">walmart.com</a>. Or used some other common service. Now amazon had a file open against then but it was nothing in this example.</div>
<div><br></div><div>I am not implying anything with any of these companies. They were just used as an example.</div><div><br></div><div>Now for some direct knowledge of mine. I have been using paypal's virtual credit cards to purchase stuff online for many many years with ZERO issues. And using paypal as paypal forever. Again with ZeRO issues. And I use I daily if not more often. Now I am not going to say that you won't have issues. I just haven't.</div>
<div><br></div><div>Good luck </div><div><br>Sent from my mobile...</div><div><br>On Feb 22, 2010, at 16:50, Jim Kinney <<a href="mailto:jim.kinney@gmail.com">jim.kinney@gmail.com</a>> wrote:<br><br></div><div></div>
<blockquote type="cite"><div><br><br><div class="gmail_quote">On Mon, Feb 22, 2010 at 4:32 PM, Scott Castaline <span dir="ltr"><<a href="mailto:skotchman@gmail.com"><a href="mailto:skotchman@gmail.com">skotchman@gmail.com</a></a>></span> wrote:<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<br>
After hanging up I started thinking about building a cement bunker and<br>
put all my money there. No banks, no plastic.<br>
<div><div></div><br clear="all"></div></blockquote><div>Within the past 3 years I have seen check authorization processes and nightly uploads to the Federal Reserve Bank occur using absolutely no form of encryption at all. >From the check reader at the store to the receiving end is nothing but a modem and a phone line and a fairly well documented data packing process. The upload to the Fed use(s/d) plain ftp.<br>
<br>Banks routinely use plain ftp to bulk transfer account data over commercial Internet connections between branches.<br><br>I was appalled. When I found it was common practice I completely floored.<br></div></div><br>-- <br>
-- <br>James P. Kinney III<br>Actively in pursuit of Life, Liberty and Happiness <br><br>
</div></blockquote><blockquote type="cite"><div><span>_______________________________________________</span><br><span>Ale mailing list</span><br><span><a href="mailto:Ale@ale.org">Ale@ale.org</a></span><br><span><a href="http://mail.ale.org/mailman/listinfo/ale">http://mail.ale.org/mailman/listinfo/ale</a></span><br>
<span>See JOBS, ANNOUNCE and SCHOOLS lists at</span><br><span><a href="http://mail.ale.org/mailman/listinfo">http://mail.ale.org/mailman/listinfo</a></span><br></div></blockquote></body></html>