[Dx-qsl] SSL added to MyQsl Service
DX-QSL
dx-qsl at m5aav.org.uk
Tue Dec 18 13:47:42 EST 2007
Quoting from the message of Tue, 18 Dec 2007 09:43:38 -0800 from Terry
<terry at kk6t.com> :
> You're creating a false sense of security here. All you're insuring is
> that the person that registered is the person uploading & downloading.
> Until you implement some way to insure that the person registering is
> the legal owner of the callsign it's a sham.
> 73 de Terry KK6T
> w4sco at sco-inc.org wrote:
> > In response to concerns about the security level of qsl cards exchanged
> > via MyQsl Service I have added SSL to the website. This results in a new
> > URL ... https://www.myqsl.cc. This should make it virtually impossible
> > for anyone other than the registered Hams (with their callsigns) to
> > upload and download qsl cards via the system.
> >
> > I am considering also asking users of the service to provide a copy of
> > their signed ham license to prove that they are in fact the ham they say
> > they are when they register. This would mean that only licensed hams are
> > uploading and downloading cards on the system.
> >
> > Les W4SCO
I thought [open to correction] that eQSL need a licence copy
And that system gets abused from what I have heard.
UK Licences are not signed, just as an aside, and are now easily
'hacked'. I have 3 legitimate ones here, and apart from minor details
they are identical. Also you have no way of knowing that a supplied
[UK] licence copy is valid or even has been really issued as you have
nothing to compare its details against. [UK callbook is up to 18 months
out of date. Half the UK amateurs information is witheld, and qrz.com is
no good for that purpose]
Graham
--
More information about the DX-QSL
mailing list