162065
submission
Patrick Griffin writes:
CSS isn't always easy to deal with. Depending on your skills and your experience, CSS coding can sometimes become a nightmare, particularly if you aren't sure which selectors are actually being applied to document elements. The article 70 Expert Ideas for Better CSS Coding includes over 70 expert tips, which can improve your efficiency of CSS coding. It also has most interesting and useful CSS ideas, methods, techniques and coding solutions as well as basic techniques you can probably use in every project you are developing, but which are hard to find once you need them.
158055
submission
Gates82 writes:
I have recently been frustrated by "added security" questions on banking and credit card websites. It seems that all of these institutions are heading towards a regular login and a second (3rd or 4th) security question to be used as a second authentication or as verification to reset your primary password. These questions seem a step backwards in security; now all that it is required to reset my password on these sites is to know my user ID and then answer a simple question (ie. place of birth, date of birth, pets names, etc) with most of the answers being quite publicly available. Personally, I normally bash on the keyboard and click continue not caring what the answer is; assuming that it will be more difficult to crack then guessing fluffy as a pet name. But to make matters more unbearable I attempted to login to a credit card website and was greeted with a second login and it was requesting an answer to one of these (hit-head-on-keyboard) questions. It took two calls to get logged in and I am now forced to use a password for each security question in place of the real answer.
This process seems like a way for companies to deal with joe blow who forgets his password every month when he goes to make a payment. But how insecure is this for the rest of us who are comfortable with our password making/remembering capabilities?
158053
submission
joeszilagyi writes:
After their passwords got cracked: At least four different Wikipedia administrators have had their weak passwords taken in the past 24 hours. They deleted the home page repeatedly, and one person even put Tubgirl on the "Site notice", which is a global header for all of en.wikipedia.org. How did it happen? Weak logon security measures — there is no CAPTCHA; crappy passwords, and on top of that, while there is an encrypted SSL logon page, it's hard to find. The scariest thing is that people with passwords of "password" are entrusted as sysops and administrators on one of the Top 10 websites on Earth. They even blocked Jimbo Wales repeatedly from his own website!
