On 2024-12-17, John Hasler <j...@sugarbit.com> wrote: > Peter Hillier-Brook writes: >> the nonsense about about not changing them ignores the obvious. > > What is that? > >> My bank performs security checks by requesting a sub-set of my >> password. > > Sounds like a reason to find a new bank, in the meantime changing your > password after every such request. Surely they can't be hashing the > passwords properly if that practice is of any use.
The problem is that your important information is not on your personal, password-protected machine. What good are your methods, as an Amuhrikan, if the IRS, your ISP, or the Social Security Administration is cracked? Or maybe a credit agency, as has already occurred. Nothing whatsoever. C'est là où le bat blesse. My French ISP was cracked, leaking my banking info. My medical insurance entity (French tiers payant) was cracked, also leaking my personal info. The cloud provider used by many French governmental agencies suffered a fire in Strasbourg in which my personal information was lost. All these things were beyond my control and had nothing to do with the data or password-protection on my computer. It's all useless babble here, if you are at all connected to the modern world.
