developers! developers! developers! developers!

[rone]

The registration process was simple. Enter a username, address, phone number, email address, and password, and you're in. Of course, if the username is taken, you're asked to enter a different username. And of course, if the password you've chosen is in use by another user, your registration fails.

It just get worse after that.

Comments

[boutell.livejournal.com]

And OMG, if the username and password both match the same existing account, you can log in!

Oh wait.

[twillis.livejournal.com]

Wow.

That's just really special.

[kodi]

I had no idea it could get that much worse. It's hard for me to believe that a person could be stupid enough to want to do that, and yet smart enough to actually do it.

Is this the Wrong Time to Talk About Security Theatre???

[drieuxster.livejournal.com]

Oh dear, I started today out reading lrc's entry Security theaterv () thinking that was a Crime Against Sanity, only to stumble over this, and worry, IS IT THE MEME OF THE DAY????

Hey kids, did you play Security Kabuki???

Well How About The All New "Play And Tell Security", From Hasbro! The people who brought you WHaMO!!!

[sambushell.livejournal.com]

Some of the stories on this site are very familiar.

[tau-iota-mu-c.livejournal.com]

You need to be very Special in order to understand their talents.

[madbodger.livejournal.com]

I have had a surprising amount of trouble explaining to putative security folks that certain versions of password non-reuse policies actually compromise security.