okay so I went to create a twitter account to be part of the group -
username, password, then Twitter demands an email address, okay,
reasonable enough for communication or to confirm you or to have some
tracking mechanism on you, whatever - BUT then they demand your email
password! Why? They don't need your password to send you email.
Doesn't this defeat security 101: don't give out your password? Doesn't
it defeat the whole idea of a password between you and your email host
? Do you give other companies root access to your server information ?
I know you all love Twitter but this is simply wrong and I don't think
as computing professionals we should support or encourage the use of a
service or vendor that demands info that is none of their business and
can only lead to bad security or malicious activity. Just because it's
"cool" doesn't mean wrong behavior should be supported or encouraged.
To say they will protect it just avoids the point. At some point you
just have to "Just Say No". So NO to Twitter for this guy. And I hope
you do the right thing and all follow suit and the Ruby group chooses to
use communication vendors that don't demand stuff they have no business
to have and breaks security 101.
Miles, I just signed up with a new account, logged out, and signed in
again. Not once was I required to enter my email account password. I
don't know if you got a different version of the site, or if the "skip
this step" link was out of view for you, but clicking "skip this step"
allowed me to do just that.
Tim
didn't see the skip step at all - however, signed in today and ta da -
no box asking for email and password - hmmm, automagic contextual
display ? or maybe my netbook screen size didn't show it - not sure -
life needs to be simpler and I need a full size tablet.
Don't we all need a full size tablet? :)