> I am interested in the list's view concerning keeping user account names from
> being distributed freely (e.g. as part of mail adress) on the Internet.
> Another way of posing that question is: do you see any security advantages in
> keeping user account names "hidden"/"secret"?
> My view is that user account names should not be a security factor at all,
> and that if they are, something is wrong with the security paradigm being
> used. But, then again, I don't believe in passwords (well, the usual
> reusable kind) either, so what do I know....?
> Any views, etc, appreciated (hope this is relevant to firewalls - it is
> to me :).
> /// Martin F
If you're providing e-mail (Why connect to the Internet if you're
not?), then your e-mail addresses certainly need to be "public." That
is, don't rely on them for security. However, your firewall (bringing
the topic into relevance) can translate e-mail addresses into other
addresses through aliasing. For example, my e-mail address can be
com, while my account name is bowes. Most sites don't do
this because it would be a bear to administer.
In any case, I don't think great lists should be sent around. But,
that's the common business practice - buying and selling of lists.