On Wed, 31 Jan 2024 11:10:34 -0000 (UTC)
Dan Purgert <
d...@djph.net> wrote:
> On 2024-01-30, Spiros Bousbouras wrote:
> > On Tue, 30 Jan 2024 10:39:28 -0000 (UTC)
> > Dan Purgert <
d...@djph.net> wrote:
> >> On 2024-01-30, Sylvia Else wrote:
> >> > This is really a rant - venting to release some of the frustration.
> >> >
> >> > I'm in the process of selling my house, and I need somewhere secure to
> >> > hold the proceeds. I decided I'd create a account with a bank I don't
> >> > otherwise bank with, and interact online with it using a live-DVD on a
> >> > system that has no storage. So no risk of key loggers or other hacks.
> >> > I'd remember the strong password, and not have it written down anywhere.
> >>
> >> Until you don't remember it, then what?
> >>
> >> Because let's face it, eventually we all forget the password.
> >
> > That's a very presumptuous thing to say. I have my own ways of storing and
> > retrieving passwords (which may include just my memory) and I'm confident
> > they are secure and reliable enough. So don't include me in your "we".
>
> So if I was to sit you down at any freshly installed PC of your choice,
> you could log-in to *any* random service to which you have a
> username/password combination *from memory* ?
No. I will note in passing that even a yes answer would not necessarily
be unrealistic. It depends on how many online accounts one has. Someone
may only have an email online account and nothing more so would only
need to remember one password.
> Because if there is even a single service to which the truthful answer
> (which, admittedly I will never know; because this is Usenet, and you
> can vehemently deny it to your last post) is "well, actually, I'd
> have to use [password-tool-of-choice] for that site"; then you are
> solidly in the group of "people who have forgotten the password".
No , I am in the group of people who never memorised the password. I have
sites for which I have memorised a password and for those I don't worry
about forgetting it (unless I go senile but then I may forget many more
things so it becomes a more general problem). And I have sites for which
I made no effort to memorise the password and I have other ways of retrieving
it. And I also have sites for which I made a decision that I wasn't going to
use them again and eventually forgot the password. But I considered those
examples irrelevant to the discussion.
But my main point was that I do not want any help from the site in retrieving
forgotten or lost passwords because I often find that the method offered
reduces security and I resent the fact that sites do not offer the
possibility to turn off such methods.
In any case , I see now that I read in your post more than what you intended.
You said "then what?" and I interpreted that as suggesting that we all need
help from the website in retrieving passwords and that's what I found
especially presumptuous.
--
I am writing this mail to you with serious tears in my eyes and great
sorrow in my heart
An email offering me 30% of $7,200,200