Hold it right there! You've likely heard it before, but here it is again... never give anyone your password for anything, to anyone, for any reason. Here, I'll discuss password hygiene and other security measures. But my IT person said they need it! No, they don't. If it comes down to it, they should have the ability to reset it to something they know. In a properly managed environment, this will leave an audit trail. Otherwise, they can have you enter it directly. In a remote support session, there are tools available to properly handle authentication without disclosing your password. If your IT staff is constantly asking for personal passwords, I know a guy that can help. Never, under any circumstances, disclose your password over the phone to a caller who's requesting it. No story, no matter how legit sounding, should prompt you to disclose authentication information. A visual representation of someone calling and requesting your passwo...
A Resource for Thinkers and Doers