However, when you save your progress and are asked to save a password, there’s no indication that it will be sent to you in an email or saved at all in recoverable form. I used my least-secure password generation algorithm anyway, but: Do you think you could add a note to the effect that users should not use passwords that they use elsewhere?
“We store the password and send it to you by email, so please do not use a ‘trusted’ password for this that you use for anything important.” (Not our design decision by the way.)
Great survey!
However, when you save your progress and are asked to save a password, there’s no indication that it will be sent to you in an email or saved at all in recoverable form. I used my least-secure password generation algorithm anyway, but: Do you think you could add a note to the effect that users should not use passwords that they use elsewhere?
Looking into it now.
EDIT: Added this warning to the save form:
“We store the password and send it to you by email, so please do not use a ‘trusted’ password for this that you use for anything important.” (Not our design decision by the way.)