On 7 August 2014 10:49, Chad <[email protected]> wrote: > On Thu, Aug 7, 2014 at 9:49 AM, Risker <[email protected]> wrote: > > > As someone with one of those "high risk" accounts, one time passwords > would > > be more likely to make me drop those permissions. Any administrator has > a > > "high risk" account given the opportunities that they have. > > > > Risker/Anne > > > > > +1. > > I'm lazy and wouldn't want the burden of remembering more > than "password123" as my password (same password I use > everywhere, again, I'm lazy) > > Oh I have no problem with regular forced password changes, say quarterly or so; I'm used to that in other contexts. But not a one-time password, which will actually increase risk because people will choose "keep me logged in" to avoid having to get a new password every time they want to log in.
These tend also to be solutions coming from moneyed countries, and some of these things involve technology that is not globally available. Risker/Anne _______________________________________________ Wikitech-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikitech-l
