I am interested in the list's view concerning keeping user account names from
being distributed freely (e.g. as part of mail adress) on the Internet.
Another way of posing that question is: do you see any security advantages in
keeping user account names "hidden"/"secret"?
My view is that user account names should not be a security factor at all,
and that if they are, something is wrong with the security paradigm being
used. But, then again, I don't believe in passwords (well, the usual
reusable kind) either, so what do I know....?
Any views, etc, appreciated (hope this is relevant to firewalls - it is
to me :).
/// Martin F