Print

Please login or register.
1 Hour 1 Day 1 Week 1 Month Forever
Login with username, password and session length

[Ken T]

I signed in, sorry tried to sign into my yahoo email address but it wants me to add security questions in case I forget my password. As if, its written several times on post-its on my screen, etc. OK, so you play their silly games,and select a question. One of which is the first motorbike you drove. Well thats easy, a BSA. However the reply is it has to be over 4 characters. Are these clowns not aware of makes such as BSA, or AJS ?. I shure as hell ain't going to type in Birmingham Small Arms, if I ever forget my password.

I think programmers sometimes take the easy route, and use the preprogrammed system, that says, an answer must be at least 5 characters to avoid simple, going through all possible combinations. Have you ever got fed up of the blasted "type in your password", that responds by displaying ***** so you can't see what has gone in. Now in a crowded office where everyone is looking over your shoulder, OK, but 95% of times must be in locations like at home, where there is little or no chance of being overseen. So why can't they put up what I actually am typing ? . This means if I make a mistake, I will see it and can correct it. Just think if you mistype the password 3 times when switching on your phone, it will lock up the SIM, and necessitate a phone call to those nice foreign people to convince them that you actually are who you are.

We have gone too far with this computerised control, we need to go back several steps and rethink.

Ken

[TheBoy]

Often these controls are put in place to say that their security meets xyz standard....

[Chris_H]

Access security to computerised systems is always a nightmare.  The programmer rarely knows the circumstances of actual use so has to go for the tightest control bearing in mind the service that's being protected.

Echoing passwords on-screen is pretty fundamental and so insecure that I would not dream of it as an option in any application that necessitated password protection.

As for Yahoo, have you tried Bantam, GoldStar, Starfire or whatever?

I do sympathise with the general point you are making.  I often want to tell the thing "It's me!, you know? I've been using you every day for 5 years!  Nothing's changed!  Get on with it.  You're here to serve me not dominate me!  Take that.         Oops".

[cem_devecioglu]

 

1. programers are lazy creatures..
2. programmers mostly use ready subroutines which they adaptate from somewhere else..
3. the programmers most hatred subject is security standards which I hate also

and after object oriented programming most of them only interest with the passing and return parameter nothing more :-/

[GastronomicKleptomaniac]

What I hate is having to log back in to things like Ebay and my bank. I have a secure password on my account on the laptop, why can't it recognise that I'm using the same IP doodah as usual, and log me in? But no, I've got to type and retype the passwords.

 *Disclaimer: you may have guessed by the use of the word "doodah" I'm not entirely au fait with computers, and there's probably a very good reason why it can't do that.
 Still, if I'm daft enough to lose my laptop, I deserve to have people using my Ebay account to bid for cars, aeroplanes, and submarines...

[TheBoy]

What I hate is having to log back in to things like Ebay and my bank. I have a secure password on my account on the laptop, why can't it recognise that I'm using the same IP doodah as usual, and log me in? But no, I've got to type and retype the passwords.

 *Disclaimer: you may have guessed by the use of the word "doodah" I'm not entirely au fait with computers, and there's probably a very good reason why it can't do that.
 Still, if I'm daft enough to lose my laptop, I deserve to have people using my Ebay account to bid for cars, aeroplanes, and submarines...

And if I nicked your laptop, it would take me precisely 2s (well, maybe 2m ) to get in to your account, and then have full access to your bank account. Nice

[TheBoy]

What I hate is having to log back in to things like Ebay and my bank. I have a secure password on my account on the laptop, why can't it recognise that I'm using the same IP doodah as usual, and log me in? But no, I've got to type and retype the passwords.

 *Disclaimer: you may have guessed by the use of the word "doodah" I'm not entirely au fait with computers, and there's probably a very good reason why it can't do that.
 Still, if I'm daft enough to lose my laptop, I deserve to have people using my Ebay account to bid for cars, aeroplanes, and submarines...

And if I nicked your laptop, it would take me precisely 2s (well, maybe 2m ) to get in to your account, and then have full access to your bank account. Nice

Which is precisely the reason you shouldn't get your browser to remember passwords!!

[Chris_H]

What I hate is having to log back in to things like Ebay and my bank. I have a secure password on my account on the laptop, why can't it recognise that I'm using the same IP doodah as usual, and log me in? But no, I've got to type and retype the passwords.

 *Disclaimer: you may have guessed by the use of the word "doodah" I'm not entirely au fait with computers, and there's probably a very good reason why it can't do that.
 Still, if I'm daft enough to lose my laptop, I deserve to have people using my Ebay account to bid for cars, aeroplanes, and submarines...

And if I nicked your laptop, it would take me precisely 2s (well, maybe 2m ) to get in to your account, and then have full access to your bank account. Nice

Which is precisely the reason you shouldn't get your browser to remember passwords!!

...so your mailbox is full of emails reminding you what your password is!

[Ken T]

What I hate is having to log back in to things like Ebay and my bank. I have a secure password on my account on the laptop, why can't it recognise that I'm using the same IP doodah as usual, and log me in? But no, I've got to type and retype the passwords.

 *Disclaimer: you may have guessed by the use of the word "doodah" I'm not entirely au fait with computers, and there's probably a very good reason why it can't do that.
 Still, if I'm daft enough to lose my laptop, I deserve to have people using my Ebay account to bid for cars, aeroplanes, and submarines...

And if I nicked your laptop, it would take me precisely 2s (well, maybe 2m ) to get in to your account, and then have full access to your bank account. Nice

Which is precisely the reason you shouldn't get your browser to remember passwords!!

[/highlight]

yes I think this is the most stupid thing browsers have done for a long time. It won't take much for a spybot type program to work out where the passwords are stored and download the lot. This is crass stupidity.

A further one last night, I wanted to put in an offer on an item in the US, however crapbay asked me out of the blue for my credit card no plus security code etc. You can not be serious

I complained, and got a nice reply saying that I would have to put this in in the future. No explanation of why, how long it lasts for, etc.

We need to get back to basics, instead of making passwords more involved, tighten up the whole computer system so it is not prone to spybots, uninvited programs etc, then make secure systems of work on top of a firm foundation.

I got an OOF member buying one of my items. He wants to use Paypal, using a refund to minimise fees. I am going to suggest next time we meet, he slip me a few fivers. This is the more efficient system, no passwords, no fees, no sodding bank accounts etc.

K.I.S.S.

Ken