Stop playing stupid games with account passwords
I just received the usual dumb email from Yahoo.
This time about forcing me to change my password next time I sign in.
Do you have any employees there with a functioning brain and stop shooting yourself in the foot?
In case you've never visited the real world this is how it works:
Option 1. I decide when and why I change my password and how strong it is.
Option 2. You decide when and why I change my password. You decide to take over my personal safety from me and you are liable. It doesn't matter if you have a disclaimer of all liability if YOU decide to take over MY control of the security of MY account, your action is incongruous with you avoiding liability for my security.
Contra Proferentem, if you put a clause in a contract drafted by you absolving your liability from any cause and then decide to take control of my personal security (to a greater degree than I have), then that is incongruous with your denial of liability and YOU become liable for loss dur to the failure of YOUR secuty system.
You don't have a clue how secure my password is but you have decided, on my behalf, it's not secure enough and taken control.
Let's look at another reason why you are liable:
- I choose to put in a weaker password because I've been forced and don't want one as difficult as the last one. It gets compromised.
- I remember my old password but I donemember my new one so I write it down. It gets compsed.
- When I set my password a decade ago my PC wasn't compromised with a malicious key logger but it is now. It gets compromised.
And that's just 3 reasons you're liable regardless of any safety clause.
You people NEVER learn. Get a lawyer with a brain.
Oh and well done on your Android key. What happens if I lose my phone with all my yahoo account details?