[Chicago] Site accounts
Warren Lindsey
warren.lindsey at gmail.com
Sun Jan 13 02:24:28 CET 2013
http://www.theregister.co.uk/2009/08/03/perl_monks_password_hack/
On Thu, Jan 10, 2013 at 10:15 AM, Skip Montanaro <skip at pobox.com> wrote:
> >> Isn't it kinda nannyish to assume that a bunch of python programmers are
> >> going to have bad password hygiene and therefore shouldn't be allowed to
> >> create their own password for the site if they want to?
> >
> > No.
> >
> > - speaking as someone involved with the current wiki.python.org issues
> > since it was recently compromised due to vulnerabilities.
>
> People of all stripes have bad password hygiene. If you classify your
> accounts as sensitive and non-sensitive (based on the kind of
> information those accounts contain), then the biggest problem as far
> as cross talk between accounts goes, is using the same password on an
> insensitive account (say, wiki.python.org) as you do on a sensitive
> account (say, your Citibank online account). Of secondary concern is
> using the same password across multiple sensitive accounts. (Citibank
> suffers a break-in and there goes your Google environment.) There's
> less and less excuse for that as most password safes have a "generate
> password" button.
>
> While I was disappointed to see the loss of wiki.python.org, it wasn't
> because my password might have been cracked. (I long ago stopped
> using my password there anyway, and just used OpenID.)
>
> Skip
> _______________________________________________
> Chicago mailing list
> Chicago at python.org
> http://mail.python.org/mailman/listinfo/chicago
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.python.org/pipermail/chicago/attachments/20130112/eb7a0c78/attachment.html>
More information about the Chicago
mailing list