Changing passwords
OK, so one security 'application' I actually installed and set up for a paying customer in the City of London (you would recognise the name were I so insensitive as to post it here) had the interesting 'feature' that you could never change the admin password. There was no facility to do that at all.
And another fail is this. (True story, NOT FOR THE FIANT OF HEART): Recently some of my post has been stolen and used for social hacking purposes, emptying one pension fund and one shares fund. In attempting to alert another investment company I explained about the post interception and asked for a change of password. Guess what: they only do that by sending me a letter in the post (which is currently on its way). They cannot stop it coming either, so I have to just hope the thieves do not intercept this one too.
<zootle-wordle, zootle-wurdle, zootle-wordle>