Netflix and spill: Web vid giant kills password masking in tests Netflix is testing a new feature that, for some subscribers, shows their passwords in plain text as they are typed in – and potentially when folks revisit the site. The temporary design tweak, which Netflix says is supposed to help fat-fingered users correctly enter their passwords, does not star out characters as they are …
*shrug*
if your bank lets you access funds with only a password, you have bigger problems than that.
My bank (Nationwide) mandates a 2FA login with a card reader, and further mandates any new transfers out of my account are subsequently re-validated with 2FA.
@Anon
Not a fan of card readers for 2FA, easy to leave behind when you need them..
TSB does 2FA in a few different ways,
On my personal account I have a password and some memorable info, I have to enter the password on every access then 3 random characters (decided by TSB) from my memorable info.
To transfer money out of the account I need to set up new recipients, doing this triggers a call to my mobile which confirms with me that it was me setting it up before allowing me to transfer money out.
My business account does the same, with the added rule that after a recipient is added you cannot transfer to them immediately. The business account also requires a code from a card reader to be entered for every transfer to an external account (This is a pain in the arse as I dont carry the card reader with me so cant always make payments when I am away from home)
Use the Up/Down buttons on the controller to enter the binary codes for the characters in the password.
It might not be very secure, but who watching is going to be arsed to decode the password?
Hmm... come to think of it, who's going to be arsed to enter their password like that in the first place!
"Trying to do a secure password implementation on a system which has no keyboard and a display which (by design) is visible across the room is a nightmare. I can't think of a secure way of doing it."
Perhaps some kind of device with a numerical keypad could be used to control the TV remotely? I wonder what it might be called...
The FireTV stick and box show 0-4 mapped onto the direction and click keys on the remote and 5-9 if you press the 'option' button.
If you watch you get to know which half of the number space each number is in.
This massively reduces the search space - 5^4 rather than 10^4
That's still 625 codes given a 4 digit PIN
So I guess I'm the only person on the planet who refuses to let my browser remember passwords?
The Register 
Biting the hand that feeds IT
Copyright. All rights reserved © 1998–2024
