who are you

[Mister Anderson]

That's not generally a thing though. You shouldn't ever have to hand over a password for admin work to be done on an account. But, as a freeloading non-paying member it doesn't affect me.

That depends on the organisational setup, tools and constraints, and nature of the job. I've had occasion in the past where I've needed the user's password to work remotely. You get them to change it afterwards.

[FatBastard]

That depends on the organisational setup, tools and constraints, and nature of the job. I've had occasion in the past where I've needed the user's password to work remotely. You get them to change it afterwards.

When they went with some new payroll system at work ages ago there was a bug in their shitty app where it would fail with a generic error message when trying to log in with a 100 character password (but it worked via the webapp). Dick on the phone says 'yeah just tell me your password.' Yeah no. 'OK I've set it to your birthday plus payroll number keep it at that and itll work. Yeah no. Keep me on paper till you fix your shit. It took them 2 months to figure it out. Worst was the bloody compny IT twat saying OK to test the long password just email me it. When I asked for his PGP key he didn't know what that was and wanted me to send it in the clear

[Mister Anderson]

When they went with some new payroll system at work ages ago there was a bug in their shitty app where it would fail with a generic error message when trying to log in with a 100 character password (but it worked via the webapp). Dick on the phone says 'yeah just tell me your password.' Yeah no. 'OK I've set it to your birthday plus payroll number keep it at that and itll work. Yeah no. Keep me on paper till you fix your shit. It took them 2 months to figure it out. Worst was the bloody compny IT twat saying OK to test the long password just email me it. When I asked for his PGP key he didn't know what that was and wanted me to send it in the clear

That's just lazy admin, all to common. Nearly as bad as lazy users.

I've worked across different domains with admin rights but not always access to active directory for the domain I'm in. Passwords become an issue if the user has forgot to leave the machine logged in or isn't sat in front of the machine when you need them to be. Nine times out of ten I'm given a generic 'User1234' password, or even worse something like 'Summer10'. Really? You haven't changed the password since the last guy reset it for you in 2010? Never mind the fact that admin are lazy and haven't set password expiration because it creates extra tickets in the long run, your security is your own responsibility.

[philipkntz]

In the past I've had to allow a mod access to my profile on another site running VB. He asked be to change my password before and after, and suggested that I delete my PM'S before hand.

[FatBastard]

In the past I've had to allow a mod access to my profile on another site running VB. He asked be to change my password before and after, and suggested that I delete my PM'S before hand.

I used to love the old version of phpBB where where it wasn't database based and you could open a huge text file with PMs and everything in it if you searched hard enough, AND even edit them!

At 15 I was a terrible forum admin but good god it was alot if fun

Then facebook groups came along and spoiled the party for mainstream special interest forums

[philipkntz]

You might think that because they only have access for a few minutes, that they havnt time to read pm but all they need to do is copy&paste. However they only need to log in to test issues a user is having. Someone with techie experience can read all info on the site.