On Wed, 24 Apr 2019 09:39:04 -0500, John McKown wrote: >On Wed, Apr 24, 2019 at 9:28 AM Steve Smith wrote: > >> The only proper way to validate an email address is to transmit a message >> to it, and have the requestor prove it was received. Every other test is >> wrong, but the asinine forms that require you to enter your email address >> twice are the most wrong. > >Right. It's not as if it will catch an typo. At least not with me, because >I type in my email address in #1, then cut'n'paste it into #2. I also hate > I've encountered one that disables Paste into the email field.
>"dark" or "obscured" password entry. It's not as if I put in passwords with >someone standing over my shoulder watching me. And it just messes me up >with some of the complex passwords that I use. So I type the password in on >a text editor, then cut'n'paste it into the web site. > I've encountered a few that disable Paste into the password field. (Ain't Javascript wunnerful!) What of terminal emulators? MacOS has a switch (for WiFi passwords only) that allows typing the password in clear. (It's not as if it weren't on a poster on the café wall.) iPhone shows the last character of a typed password, for a couple seconds, then it fades. But it seems to allow Paste. In the Bad Old Days, TSO allowed logon in a single transaction, "user/password". And "/" was a valid password, so I had an arrogant colleageue who used "user//". No More. Why are passwords restricted to a maximum length of 8, and passphrases restricted to a minimum length of 9? -- gil ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
