On 7 August 2014 10:49, Chad innocentkiller@gmail.com wrote:
On Thu, Aug 7, 2014 at 9:49 AM, Risker risker.wp@gmail.com wrote:
As someone with one of those "high risk" accounts, one time passwords
would
be more likely to make me drop those permissions. Any administrator has
a
"high risk" account given the opportunities that they have.
Risker/Anne
+1.
I'm lazy and wouldn't want the burden of remembering more than "password123" as my password (same password I use everywhere, again, I'm lazy)
Oh I have no problem with regular forced password changes, say quarterly or so; I'm used to that in other contexts. But not a one-time password, which will actually increase risk because people will choose "keep me logged in" to avoid having to get a new password every time they want to log in.
These tend also to be solutions coming from moneyed countries, and some of these things involve technology that is not globally available.
Risker/Anne