ggonline Wrote:How would you do that and allow secure sharing via email address?
jorhett Wrote:Nope, I'm asking for something simpler. I have no idea where you got all that multi-account stuff, my original request was quite clear.
I want to be able to add aliases that people know me by. That way if they say "share with firstname.lastname@example.org" LastPass will know it's an alias for email@example.com (for example).
This request is trivial, and doesn't change logins, password ownership, nothing. Just the ability to receive shared passwords at multiple different e-mail accounts without creating a new LastPass account for each one.
mike808137 Wrote:You _are_ asking for multiple account management. And that's not a siimple or trivial problem to solve, despite being a trivial to describe convenience for you.
mike808137 Wrote:How, exactly can LastPass be sure, from the viewpoint of the owner of the password being shared, that only "firstname.lastname@example.org" has access to their password? How does the company know that you're not setting up an "alias for email@example.com"? I don't think the company allows you to decide what their password management and control policies and practices are.
mike808137 Wrote:Enterprise (or people) sharing of passwords is managed by the sender. They call the shots, as it is their password and what that password gives access to. Not you, not the person receiving the password. They are trusting that you do not, in turn, share that password with anyone else - You may know that the "anyone else" is really you, but what LastPass has to protect from, is that the owner of that password sharing it with you doesn't.
mike808137 Wrote:How do we, or LastPass, or the enterprise or person sharing their password with you) know "firstname.lastname@example.org" is NOT an alias for "email@example.com"? If badguy tells lastpass his account is really an alias for goodguy?
mike808137 Wrote:It might seem simple user management to you, but what you're really doing is trying to force the people who share passwords with you to agree to your personal choices about what's an "alias" or not, and that their security and management policies about identity and access to passwords they are going to share with you don't matter.
The sender of the password has decided to share that password with "firstname.lastname@example.org", and not with "email@example.com". You want to violate that, and I'm pretty sure that is not what the sender and owner of the password thinks they are agreeing to by sharing with "firstname.lastname@example.org". If you need the sharer/owner of the password to share it with "email@example.com", then get them to do so. The problem is your multiple (online) personalities, not their, or LastPass' inability to deal with them.
Users browsing this forum: No registered users and 17 guests