Secure password ruined by “personal questions”
Ok, a bit of a rant here. Am I the only one who feels secure passwords are ruined and made insecure by the personal questions fields? I mean in the old days we’d just require a password with at least a number and a capital and at least 8 chars total. This would make it impratical to brute force the keyspace, but no, now they add the “personal questions” which can be used if you “forget” your password. So now we’ve just invented a way to create new security holes, not fix old ones! Point and fact, “What’s your favorite pets name”… WTF! This kind of backwards thinking it just pathetic by modern security standards and I’m getting tired of seeing my bank sites require this nonsensical garbage. Thoughts?
Loading ...