On Fri, Dec 20, 2013 at 10:40 AM, Roger <are...@bigpond.com> wrote: > On 12/20/2013 09:24 PM, Patrick O'Callaghan wrote: > > > On Fri, Dec 20, 2013 at 8:05 AM, Tim <ignored_mail...@yahoo.com.au> wrote: > >> e.g. A fool uses some webservice that asks you to log in with your >> hotmail username and password, so they do, despite the face that this >> webservice is not hotmail. >> > > > Not quite what you're saying but tangentially related: many web sites > are confusing to the naive user. They ask you to register using your email > address and a password, without making it clear that they don't mean the > password for the email account. I'm sure more than a few people have been > caught by that. It doesn't mean the website is malicious, but now the > attack front on the password has been expanded. > > poc > > I've noticed that they prefer/require email address as user name to > reduce the instance of simplistic user names while remaining memorable. > There's nothing to stop one using a fictitious email address as a user > name provided one remembers it when needed. qwert...@qwe.bv once worked > for me along with similary stupid trials. >
Except when they actually want the real address to confirm the registration, which is quite common. In any case, the point I was making is that the password should be different, something which may not be clear to every user. poc
-- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines Have a question? Ask away: http://ask.fedoraproject.org
