1) Utterly fails to understand the concept of "authentication" when
used within a security framework. "We have to authenticate the
validity of this request to change <some non-trivial aspect of
customer's service> with the following <method>; we do this to
protect the security of your account."
2) Then, instead of using <method>, sends gripe-mail misrepresenting
significant portions of the conversation in which the framework was
explained.
And all because the Systems Administrator was asked to use a specific
email account, readily available via a browser pointed at
mail.<hostname>.com, and for which she had a username and password.
I have no idea why people decide it's easier to toss shit at, rather
than listen to, others when they are trying to help.