Loading Profile...
Asking for 3rd party passwords
Please don't ask for people's Gmail and Yahoo passwords. While the marketing benefit might seem too good to resist, it really just teaches people how to be phished. Believe me, if the service is awesome, I'll tell my friends :D
I’m sad
1 person has this question
I have this question, too!
Tell me when someone answers.
The more people who ask this question, the more it gets noticed.
The more people who ask this question, the more it gets noticed.
-
Inappropriate?Hi,
Thanks for your feedback.. we'll discuss this internally. In any case, this is completely optional... we do not send any emails unless and until the user specifically chooses to do so.1 Comment
Add a comment
This answers the question
-
Amit, I think you're missing the point. By telling your users that it's perfectly acceptable for them to divulge the passwords for their email accounts on a third-party website like Slideshare, you are effectively teaching them how to be phished.
I'd be interested in hearing how your internal discussions are going, particularly in light of the fact that all three providers that you are slurping from (GMail, Hotmail and Yahoo Mail) offer secure authorization now. See Flickr's example of how to do this the *right* way: http://www.flickr.com/import/people/ -
Inappropriate?Todd,
I get what you're saying, and completely agree. We need to get out of the business of asking for third-party passwords, ESPECIALLY the ones that are tied to email.
We're operating under high load right now, engineering-wise. Can you recommend any libraries, widgets, or online services that would help us make this change (to OAuth or something similar) more easily?
I’m stressed out
EMPLOYEE
EMPLOYEE
