Replies

@oyam I don't know about SmugMug history. Why did you lose love for them?

For the moment, Flickr still uses Yahoo authentication for old accounts and for signup. Still too early for change there. This part has to change for me to use it again.

@hjertnes Hope! Yes, that Yahoo authentication drove me away hard. I don't know SmugMug, but I kept knowing less about Yahoo as it kept stooping lower.

@MacsFuture The two links, youtube here and wordpress earlier, don't link out or offer any mouseover info making me think you might need to edit them to square-bracketed(link) format, not mere pasted-link.

@oyam I should say that I understand that forcing a less secure password recipe on a user does harm. Even in the case I suggested, where the site "advertised" both simple and complex recommended recipes, the user should always have a choice of making and using a complex recipe for thier own passwords.

The key to my question comes from the advertisement, the presentation of the recommended recipe during password creation as (and ignore this charged desrcipton) fake news for the potential hacks, misleading them to stick to more simple recipe algorithms -- wasting time on many many cracking attempts, because using a simple recipe algorithm on an even one bit more complex actual recipe yields zero successes over the entire run.

@roelwillems So, traffic insurance, in a way. It makes sense to take instead of risking an over threashold burst your provider couldn't handle. But you pay ahead of time a lower rate than a spike would have cost.

@oyam Add: which user has which recipe at which time for the case of resets and password changes. Explain it all upfront and why. "You'll sometimes get the complex and sometimes the simple."