Slashdot Mirror


Changing Customers Password Without Consent

risinganger writes "BBC News is reporting that a customer had his password changed without his knowledge. After some less than satisfactory service the customer in question changed his password to 'Llyods is pants.' At some point after that, a member of staff changed the password to 'no it's not.' Requests to change it back to 'Llyods is pants,' 'Barclays is better,' or 'censorship' were met with refusal. Personally I found the original change funny, like the customer did. After all, god forbid a sense of humour rears its ugly head in business. What isn't acceptable is the refusal to change it per the customer's requests after that."

5 of 435 comments (clear)

  1. Re:Plaintext passwords? by Q-Hack! · · Score: 0, Redundant

    I was thinking the same thing... WTF?

    --
    Some days I get the sinking feeling Orwell was an optimist.
  2. Re:How did they even know his password to begin wi by tjstork · · Score: -1, Redundant

    Heh. Truly a RTFA moment....They can't store that clear text if they want to verify it.

    I read the article. You miss the point. You don't "verify the password". Not over the phone, or over the computer. You verify your identity and reset the password. That's the way good security systems work.

    --
    This is my sig.
  3. Re:How did they even know his password to begin wi by Anonymous Coward · · Score: -1, Redundant

    And this is a *bank*, storing passwords in plaintext???

    Reminder to self, *never* give Lloyd's any of my business.

  4. Re:Plaintext passwords? by jasonmicron · · Score: -1, Redundant

    No shit.

    What the hell?

  5. Re:Plaintext passwords? by Anonymous Coward · · Score: -1, Redundant

    -10 points for ripping off xkcd,

    Link to comic badly quoted...
    http://xkcd.com/327/