• Jim P. (1/17/2013)


    Any time someone brings up password security I always think of this XKCD commentary[/url]

    Except that for a site that you visit once a week, let alone once a month or once a year, you haven't memorized it, you've forgotten all about it. It may have taken you an hour of looking around to even FIND the site, you aren't going to remember the password, unless of course it's the password you use everywhere else.

    Which is the advantage of OpenID -- you don't have to remember the password, you just have to be using the same OpenID provider as you were a year ago.

    Pasword safe's are fine, but they may not be trusted -- or used frequently enough to be considered worthwhile.