To LUGNET HomepageTo LUGNET News HomepageTo LUGNET Guide Homepage
 Help on Searching
 
Post new message to lugnet.peopleOpen lugnet.people in your NNTP NewsreaderTo LUGNET News Traffic PageSign In (Members)
 People / 1098
1097  |  1099
Subject: 
 Re: Password checks (was: Re: LUGNET Memberships)
Newsgroups: 
 lugnet.people, lugnet.admin.general
Date: 
 Tue, 26 Sep 2000 19:03:12 GMT
Viewed: 
 6869 times
  
In lugnet.people, Steve Bliss writes:
In lugnet.admin.general, Todd Lehman wrote:
I didn't plan for that.  In the beginning, I honestly didn't think that
anyone would ever forget their password (or at least not have it written
down somewhere that they could find it).

Huh?  Todd, I hope you meant to write, "I didn't think about dealing with
people forgetting their passwords".

No, I meant exactly that:  I didn't think that anyone would ever (a) forget
their password or (b) not be able to just go look it up.  When you put it in
a cookie, you don't even have to remember it beyond that, unless you move to
different systems or sign out or your cookie file becomes corrupt.  I guess
that was naive of me.  We sent it out printed-only in the beginning so that
that we could verify that someone had actually received it (kinda like what
PayPal does, but not quite as stringent) and so that they'd have a written
copy they could keep somewhere safe if they ever needed it, or destroy it if
they knew they wouldn't forget it.


People forget passwords *all* *the* *time*.  That's why so many sites have
such ridiculously unsecure password requirements -- so people can remember
how to get in.

Yah, OK.  Heh heh.  I wonder, though, don't people still forget even their
super-insecure bad passwords?  BTW, I've read more than one story of someone
reporting that a stubborn friend of theirs (different people) would use a
site's name as their login password.  I guess that's pretty hard to forget,
if you're consistent about it.  :-)


And writing passwords down doesn't help -- people either either leave them
out in the open, or they put them in a safe place, and forget what that
safe place is.

Well, now that you mention it, I have gotten a few mails from people who said
they can't remember where they put their membership packet.  Someone had moved
to a new house and hadn't unpacked it yet, and another person thought their SO
might've cleaned up and put it somewhere.

--Todd



Message is in Reply To:
  Re: Password checks (was: Re: LUGNET Memberships)
 
(...) Huh? Todd, I hope you meant to write, "I didn't think about dealing with people forgetting their passwords". People forget passwords *all* *the* *time*. That's why so many sites have such ridiculously unsecure password requirements -- so (...) (24 years ago, 26-Sep-00, to lugnet.people, lugnet.admin.general)  

113 Messages in This Thread:
(Inline display suppressed due to large size. Click Dots below to view.)
Entire Thread on One Page:
Nested:  All | Brief | Compact | Dots
Linear:  All | Brief | Compact
    
Custom Search

©2005 LUGNET. All rights reserved. - hosted by steinbruch.info GbR