The bane of my life (and probably everybody else’s)

I think folks have every reasonable cause to question the general competence of IT persons who design authentication systems that mandate an exact password length, or a maximum password length (say, 10 characters max), or passwords which must not contain certain characters, or lock your account out after three (why three?) attempts.

Also cute – government online service providers that ask you to fill out a “forgotten password phrase” when you set up your account initially. How are mere mortals supposed to remember the phrase two years down the track without writing it down or reusing it? And how is this supposed to be more secure than your basic security questions?

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s