|
|
|
|
|
|
by GauntletWizard
1686 days ago
|
|
|
Most people would not question having to type in their username for a fresh login - Banks sign you out so quickly and their "remember me" is often intentionally gimped. So users are trained to type their username into the field, and the bad site can proxy that to the bank and send back the image just fine. Okta still includes this "feature" by default, and is among the reasons I will never trust Okta or any client of theirs. |
|
|