[rzzzwilson]

> Almost any security question’s answer is guessable by doing research on the target person online.

That's why you never answer the question but use some "non sequitur" answer:

Question: what colour was your first car?

Answer: rumpelstiltskin

[bradknowles]

This runs afoul of the rule about telling lies — you find yourself unable to remember which lie you told where.

[bozho]

and also, this is some non-obvious practice for people who are not security experts. They answer honestly because that's what they are asked