On 07/05/07, David Gerard dgerard@gmail.com wrote:
Normal people just *don't understand* passwords.
I used to do dial-up Internet tech support. "What do you want for a password?" "Oh, [username]." "I'm sorry, you can't have it be the same." "Oh, [username]1."
Suggestions? Assume we can't require an RSA keyfob for all editors.
... but it would certainly not be unfeasible for all users whose details are already held by the Foundation (CheckUser, Oversight, Steward... others?). Intruiging concept - HTTPS-only RSA login for "special" users. But not very wiki-like. :-)
Yrs,