This discussion has been archived.
No new comments can be posted.
The username/email conundrum
"Spock, did you see the looks on their faces?" "Yes, Captain, a sort of vacant contentment."
"Spock, did you see the looks on their faces?" "Yes, Captain, a sort of vacant contentment."
I have always hated this (Score:2)
Flawed in so many ways - perpetrated by AD, linking Exchange. More MS bullshit that spilled over into the Dot Coma world.
Re: (Score:1)
Re: (Score:2)
You sign into AD with either a username, or SMTP addess. They unified namespace this way. 14 years ago...
Additionally, random account creation (Score:1)
Another flaw - using the email address as the username and then not verifying the email address prior to actual account creation has lead to me getting a number of accounts on a number of systems I have no interest in. This is probably mostly due the fact that my main email address is very simple and a bunch of people either mistakenly or idiotically keep using it instead of their own... As a matter of fact that's how I ended up with a FB account in the first place.
Re: (Score:1)
No real solutions, just better sticking plasters (Score:2)
Alerting you to login attempts from new locations or devices, and offer two-factor authentication, will slow down the hackers for a time.
But the answer, for most service providers, is to tell the user that it's their problem now.
Re: (Score:1)
I'm not all that fond of phone based two-factor authentication any way. Especially, because phones break, get lost or get stolen at the least opportune moments.