Difference between revisions of "Talk:1200: Authorization"

Explain xkcd: It's 'cause you're dumb.
Jump to: navigation, search
Line 6: Line 6:
 
::My bank account website logs me out if I'm inactive for 10 minutes. It doesn't even leave the page up, it switches to a login screen. [[Special:Contributions/24.77.229.71|24.77.229.71]] 14:35, 17 April 2013 (UTC)
 
::My bank account website logs me out if I'm inactive for 10 minutes. It doesn't even leave the page up, it switches to a login screen. [[Special:Contributions/24.77.229.71|24.77.229.71]] 14:35, 17 April 2013 (UTC)
 
:I wonder how useful a keylogger would be if you never typed a username or e-mail to go with the password.  Every important account I have has that remembered, and I just type the password.  It sounds like it would be zero context. [[Special:Contributions/76.106.251.87|76.106.251.87]] 15:09, 17 April 2013 (UTC)
 
:I wonder how useful a keylogger would be if you never typed a username or e-mail to go with the password.  Every important account I have has that remembered, and I just type the password.  It sounds like it would be zero context. [[Special:Contributions/76.106.251.87|76.106.251.87]] 15:09, 17 April 2013 (UTC)
 +
::Except usernames tend to be reasonably easy to figure.  E-mails certainly are what with folks tending to broadcast their e-mail addresses to everyone.  So passwords, although also often not overly difficult to crack (http://xkcd.com/936/), remain the part not generally known.  Not worrying about a keylogger picking up a password, even "out of context" would be a mistake. [[Special:Contributions/67.51.59.66|67.51.59.66]] 17:11, 17 April 2013 (UTC)

Revision as of 17:11, 17 April 2013

This is the reason that I set sudo to not prompt for a password. I just make sure my computer locks itself aggressively. 130.18.105.246 06:59, 17 April 2013 (UTC)

The admin account should still be guarded EXACTLY for the ability to install drivers. The driver you don't want to have installed is keylogger stealing your passwords. I mean, you don't have your bank password remembered in browser, do you? Still, auto-logout or auto-lock is important feature. You should also set-up and use separate account for high-risk activities (like opening emails from unknown persons promising naked celebrities ... ok, you actually shouldn't be opening such emails at all, but if you are really curious ...). -- Hkmaly (talk) 09:06, 17 April 2013 (UTC)

Even if you can log into your bank account, you could not transfer money without authorizing transactions. BKA (talk) 11:23, 17 April 2013 (UTC)
My bank account website logs me out if I'm inactive for 10 minutes. It doesn't even leave the page up, it switches to a login screen. 24.77.229.71 14:35, 17 April 2013 (UTC)
I wonder how useful a keylogger would be if you never typed a username or e-mail to go with the password. Every important account I have has that remembered, and I just type the password. It sounds like it would be zero context. 76.106.251.87 15:09, 17 April 2013 (UTC)
Except usernames tend to be reasonably easy to figure. E-mails certainly are what with folks tending to broadcast their e-mail addresses to everyone. So passwords, although also often not overly difficult to crack (http://xkcd.com/936/), remain the part not generally known. Not worrying about a keylogger picking up a password, even "out of context" would be a mistake. 67.51.59.66 17:11, 17 April 2013 (UTC)