I used to think that those recovery questions are stupid, but no. The user is the stupid one, entering the expected information. A few years ago I just decided to enter another generated password in each of the recovery questions, and store them alongside the main one in my password manager. Yes, the school I attended in the fourth grade was nVKuq&zo5BiCOc*0JY5JZHsgRPqcJEumBKV5tt%uSk#acN60s!uLh5MIGwobA3YyHIq3dQxm8r0Yhloloc&3a3BLm!nNbAZ%Vzut - it’s worked for every site I’ve tried it on, too.
Uno reverse the hackers, 4 passwords instead of 1. 😎
Nice. My bank lets me pick my own questions, too. The answers are a transformation of the question which, itself, is just some ASCII. My wife uses the same login for the bank, and she hates it.
Now, you got me thinking. I could make the questions cryptographic hashes that I decrypt to an answer. My wife is going to kill me.
What was your mother’s maiden name again?
Just curious… favourite pet?
I’m so glad we are both from that one town. How do you spell it again? I always get it wrong.
Did we go to the same high school?
Man, I almost ran into the piece of shit car you had so many times… what even WAS that thing?!
I named it after your first pet, Spike. It was Spike, wasn’t it?
eAymQqE5P9q1hiC3dQ3Aa4Iv%awgxWWTPkmAd1q2MZ4bs$Wm^dO3bS9Qy3VWoYynH%rCLiIxR#dZ&@u2H0YAuK%Bh5JMjsmx4MdSvU1!JP4gxbuoqbV1aI8#Ix8ai2
We just call her Scarlett for short.
According to my password manager…
_^J©7O]M¢#yi¼LTKWtId@fBl±bM}).÷*N§p*@+J(K/?³_:nz¼4Xo_ODR@¿-G>#9YSé_÷L/wp±i9mN<!8S)§Lw2p$'e(w^+y^g.}ïù_;InN¹§Z^ME1I}3&!tNd®UEa:ïvQ¡¼v4½¿ï%÷32 Q°]%`0,¿>6*×F/ñbo0{/IN:Y]F§OZy?N0¼½- 9yù=T{.LD0®¼C0M×H>])½PV+Ybw×!?Uj>5-b{`#g!E,WQ}&p°c2"U}'j½WqQf#¹Té#¡GMq-_×XAB=¦That’s Polish, right?
I thought it was a Perl script…
shruggeth
: p
[MODEM NOISES]
I used to think that those recovery questions are stupid, but no. The user is the stupid one, entering the expected information. A few years ago I just decided to enter another generated password in each of the recovery questions, and store them alongside the main one in my password manager. Yes, the school I attended in the fourth grade was nVKuq&zo5BiCOc*0JY5JZHsgRPqcJEumBKV5tt%uSk#acN60s!uLh5MIGwobA3YyHIq3dQxm8r0Yhloloc&3a3BLm!nNbAZ%Vzut - it’s worked for every site I’ve tried it on, too.
Uno reverse the hackers, 4 passwords instead of 1. 😎
Nice. My bank lets me pick my own questions, too. The answers are a transformation of the question which, itself, is just some ASCII. My wife uses the same login for the bank, and she hates it.
Now, you got me thinking. I could make the questions cryptographic hashes that I decrypt to an answer. My wife is going to kill me.