Dear epassporte.
 

Even though I use a very random and long password that is not used anywhere, and I also only use my desktop bookmark to go to your site. Would it not be feasible to add in an additional layer of online access security?

I would personally feel a great deal safer if you could add in one more layer of security after you have entered your username and password before you could access the online account. I would really like to possibly see an image identification type security question like many financial places are now using. Where you initially select an image, possibly user could also upload their own image to use. Then when you log in you must select the correct image to get to the account. Reason for the ability to upload your own image would be so that fake epassporte sites could not collect user selections of correct images since they would have no way to harvest every possible image for the users to select from. Or I suppose if you allowed users to select from a hundred random images out of say ten thousand or so you could have available. So that no particular user would ever have the same one hundred to pick from.

Honestly though just anything to add an additional security layer that also would be damn near impossible for a fake site to harvest that also goes beyond the user and password combo.

Thanks and yes I do know this is not the epassporte forum or request area. I post it here just to possibly get support and feedback from additional users.

I 100% agree. but I doubt they'll do shit until there's competition. There's simply no real reason for them to.

SHUT THE FUCK UP

I like it...but

Well they are doing more mainstream stuff. (google epassporte and sundance or epassporte and chefdance). So maybe they would consider it if they are courting more non internet type businesses.

I was on the phone with a sponsor today that pays alot of affiliates via epassporte.

They change their password once a week, right after payments are sent.

Probably a good idea if you run alot of volume through your account

all this missing money might be a real reason...

I totally agree with after shock media

I have seen to many "I got robbed Threads" and this is just one forum there needs to be more security also an email when cash is sent or recieved would be nice

RSA Secure ID - With a pager :winkwink:

Yups... I love my financial accounts that use RSA keys.

Sounds like a great idea. I see that PayPal has the access code key thing available now. epass should look into this... it would solve a LOT of problems. It also shouldn't be optional, it should be mandatory... that is, if you value your money and privacy.

I have to agree with you also..being a victim myself,it needs to be addressed

Please note the reason I went with the image idea was that in my mind it would be easy to add and be the most affordable solultion for the company itself. Yes it is a little low tech, yet it seems to be very secure.

Today's "robbed" threads have me freaked out too :(

One of these days AfterShock is gonna say something that I don't agree with. I'm still waiting for that day, but it's gotta happen sooner or later... doesn't it? :)

fuck that amateur stuff, we need this:

http://www.rsa.com/node.aspx?id=1156
http://linuxbrit.co.uk/gadgets/lg/IMG_0428.JPG

sounds like a good idea . My bank does it and it doesn't seem like a hard system to add.

Woj, that amateur stuff is cost effective and easy to add yet difficult to bypass. Keep in mind we are talking about a company with no real competition, one with no real cash insentive to change, and one that charges a very high fee for a not to well made plastic card. Last thing I would want to do is pay a grand or more for a security measure, specially when a cheaper way is available that would just take a small bit of programing.

I was just messing around by suggesting that idea, obviously there is no way they would implement that... but those RSA devices are not THAT expensive, epass could get them for perhaps $30/each... it's a pretty reasonable price, considering they last 3 years, so only $10/year...

And how much do you think a credit card costs?

I use Wells Fargo and they don't have the image verification or this RSA thing. What banks are you guys using?

Ohhh yeah, best of the best baby :)
WG

Bank of America has the image thing.

All these epass threads make me think I really need to get my payment system running for the public. :Oh crap

Epass can't code their system to say "we're having a problem, try again later" rather than reporting a balance of -$1.00... and you want them to add in extra security features??

Good luck handling all the fraud... if it were that easy then I'm sure there would be a lot more competition...

The only problem with RSA fobs is I now have 3, with the goofy looking fob from Pay Pal on the way. If this keeps up I'll need a purse. :1orglaugh

this is falling into deaf ears

How do I get one from paypal? happen to have the url handy?

Super Duper Key Fob.

:thumbsup

Edit: But don't tell anyone.

Yeah I was going to recommend SecurID.

Of course, anyone who used to "hack" AOL and sign on internals knows that sID isn't totally secure ;)

Hmm it will be good if they would offer card reader or something where you card and account will not be active unless you active it by offline reader.That is how american express blue function.

I'm pleasantly surprised to find that this offer is not just a USA-only thing. I've just placed an order!

I take it each one has a different set of hardcoded numbers (or a sequence generator which effectively never repeats) and paypal also have the same list at their end to match against?

I wonder if something like this could be used for server level protection, like SSH login...

we wouldnt even have the internet with that attitude :winkwink:

it already works why make it better

So more deaf ears can read it.

awesome idea :thumbsup