Re: Password Pride - A Humorous Vulnerability



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

andy cuff wrote:
If
this was an isolated incident I wouldn't mention it. However, these
instances
are becoming ever more frequent, is it my trustworthy face or are others
experiencing similar errors of judgement?

You are not alone. I guess this is really common (at least I had people
tell me their PW as well).
My guess is that every human being has a craving for attention and
acknowledgment of one's work. For most computer-related jobs that
acknowledgment is rare since only very few people understand what you
are doing. So if someone from the administrative sector meets someone
from the security sector he or she (<- hopefully) sees a chance that
someone might value his or her work.
So they simply overreact.

Hows that for social engineering?

Greetings
Paul
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFFrki6aHrXRd80sY8RColvAJ4oet7iyaaDmOw/bg4R5MoWF4thSgCfRvYt
tH4EviWgpi+EkgHdFTPksNo=
=P3Y9
-----END PGP SIGNATURE-----