Difference between revisions of "Talk:1200: Authorization"
Line 6: | Line 6: | ||
::My bank account website logs me out if I'm inactive for 10 minutes. It doesn't even leave the page up, it switches to a login screen. [[Special:Contributions/24.77.229.71|24.77.229.71]] 14:35, 17 April 2013 (UTC) | ::My bank account website logs me out if I'm inactive for 10 minutes. It doesn't even leave the page up, it switches to a login screen. [[Special:Contributions/24.77.229.71|24.77.229.71]] 14:35, 17 April 2013 (UTC) | ||
:I wonder how useful a keylogger would be if you never typed a username or e-mail to go with the password. Every important account I have has that remembered, and I just type the password. It sounds like it would be zero context. [[Special:Contributions/76.106.251.87|76.106.251.87]] 15:09, 17 April 2013 (UTC) | :I wonder how useful a keylogger would be if you never typed a username or e-mail to go with the password. Every important account I have has that remembered, and I just type the password. It sounds like it would be zero context. [[Special:Contributions/76.106.251.87|76.106.251.87]] 15:09, 17 April 2013 (UTC) | ||
+ | ::Except usernames tend to be reasonably easy to figure. E-mails certainly are what with folks tending to broadcast their e-mail addresses to everyone. So passwords, although also often not overly difficult to crack (http://xkcd.com/936/), remain the part not generally known. Not worrying about a keylogger picking up a password, even "out of context" would be a mistake. [[Special:Contributions/67.51.59.66|67.51.59.66]] 17:11, 17 April 2013 (UTC) |
Revision as of 17:11, 17 April 2013
This is the reason that I set sudo to not prompt for a password. I just make sure my computer locks itself aggressively. 130.18.105.246 06:59, 17 April 2013 (UTC)
The admin account should still be guarded EXACTLY for the ability to install drivers. The driver you don't want to have installed is keylogger stealing your passwords. I mean, you don't have your bank password remembered in browser, do you? Still, auto-logout or auto-lock is important feature. You should also set-up and use separate account for high-risk activities (like opening emails from unknown persons promising naked celebrities ... ok, you actually shouldn't be opening such emails at all, but if you are really curious ...). -- Hkmaly (talk) 09:06, 17 April 2013 (UTC)
- Even if you can log into your bank account, you could not transfer money without authorizing transactions. BKA (talk) 11:23, 17 April 2013 (UTC)
- My bank account website logs me out if I'm inactive for 10 minutes. It doesn't even leave the page up, it switches to a login screen. 24.77.229.71 14:35, 17 April 2013 (UTC)
- I wonder how useful a keylogger would be if you never typed a username or e-mail to go with the password. Every important account I have has that remembered, and I just type the password. It sounds like it would be zero context. 76.106.251.87 15:09, 17 April 2013 (UTC)
- Except usernames tend to be reasonably easy to figure. E-mails certainly are what with folks tending to broadcast their e-mail addresses to everyone. So passwords, although also often not overly difficult to crack (http://xkcd.com/936/), remain the part not generally known. Not worrying about a keylogger picking up a password, even "out of context" would be a mistake. 67.51.59.66 17:11, 17 April 2013 (UTC)