sam henri goldMar 1

I don’t think any of you realize how dire the state of password management is. The lady next to me on this flight just logged onto the flight wifi by entering a password from her notes app. Then, on her work computer, she had a google sheet named “master password list” including one entry for “file server”

So here’s my proposal for developers of any app that could conceivably be used to write down passwords: if you detect a title like “passwords” or a bunch of “email: … \n password: …” lines, show a banner that says “this is a very bad idea”

Show threadsam henri goldMar 1
If you work on a chatbot, hard code its response to you telling it a password as “ALALALALA I CANT HEAR YOU DONT TELL ME THAT”
Show threadDan WinemanMar 1
@samhenrigold This would be equivalent to adding an unwritten password validation rule: “your password must not resemble a password when pasted into things that detect passwords”
Show threadsam henri goldMar 1
@dwineman the advice “your password should be memorable” has infected probably a billion or so people
Show threadГригорий Клюшников

sam henri gold, nothing wrong with that, as long as it's unique-ish per account.

Yes I'm that guy who can't possibly trust a piece of software to be a singular failure point for his entire digital life because I know too much about how software is made.

Mar 2 at 12:01amWeb