One thing leads to another. It sets up the view that its ok to give out what should be considered highly confidential information.
This isn't about abuse or misuse of passwords. It's about getting users into a mindset where it's ok to give out confidential information.
The times I've had to deal with the idiots on the helpdesk and I've refused to give out pasword details they have refused to help me - Not exactly a workaround.
I refused to give any part of my password when they asked in an email :
"The information below will also help us:
*your full name
*your account email address or username
*your telephone number that you dial into the Internet from
*your postcode
*1st and 3rd characters of your password
As soon as we hear from you we can sort this out."
Having refused, they emailed this :
"Please note that we always respect the privacy of your personal
information but we do need to undertake some quick security checks for
reasons under the Data Protection Act (DPA).
Please provide at least 3 of the following pieces of information:
*your full name
*your account email address
*your telephone number from which you dial into the Internet
*your date of birth
*your postcode
*1st and 3rd characters of your password"
So I confirmed my full name, email address and postcode.
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
