You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
It looks like the risk of phishing has never really been discussed in this repository.
Currently Liberapay recommends either using a password manager, or not setting a password at all (and always logging in via email instead). Both of those options reduce the probability of a user being tricked into giving access to their account to an attacker, but they don't eliminate it, and of course not all users do what's recommended. Possible improvements include #926 and #2163. Feel free to post other suggestions here.
The text was updated successfully, but these errors were encountered:
Changaco
added
discussion
issues that are undecided or for which feedback is invited
defense
protecting ourselves, our users and innocent third-parties
labels
Nov 5, 2023
It looks like the risk of phishing has never really been discussed in this repository.
Currently Liberapay recommends either using a password manager, or not setting a password at all (and always logging in via email instead). Both of those options reduce the probability of a user being tricked into giving access to their account to an attacker, but they don't eliminate it, and of course not all users do what's recommended. Possible improvements include #926 and #2163. Feel free to post other suggestions here.
The text was updated successfully, but these errors were encountered: