I think they check the browser and its location and then make up silly reasons for not recognising my password.
That and sending useless error codes.
Instead of saying 'access refused' - with a reason, they make it sound like it is an error, which just wastes time.
It's happened with several systems recently, including some well-known big ticket systems. Then, when I'm back at base, it can be easy to log in again.
Of course, there are a few systems that I don't bother to reuse after they've failed.
No comments:
Post a Comment