A Detailed Look at The Account Registration Process for Review, Comment, and Suggestion From All Users

grittenald (57) · 8 years ago

I absolutely agree with the passwords needing to be explicit that once you forget your password, sorry no dice. There have been some new people that found this out the hard way unfortunately.

Honestly, I think the 12 words recovery is the best option for Steem that other coins and HD wallets are using. That way, if all else fails, they for sure have a backup of their password hash.

$0.29

15 votes

will-zewe (61) · 8 years ago

Yeah I was really trying to stress the importance of password safety with this post https://steemit.com/steem/@will-zewe/if-you-re-new-to-the-crypto-world-and-now-find-yourself-in-possession-of-a-few-steem-steem-dollars-take-a-watch-on-what-you-can figured the newbies could use all the help and advice they could get.

$0.14

6 votes

afrizalaf (37) · 8 years ago (edited)

use service such as lastpass so this problem could be resolved,it's like your storing your password in secure way and autofill any form

WHY STEEMIT COULD MAKE US TO BE A NEW ANOTHER WEALTHY PERSON:
https://steemit.com/steem/@afrizalaf/why-steemit-could-make-us-to-be-a-new-another-wealthy-person-in-this-planet

$0.00

cryptogee (75) · 8 years ago

Totally agree pfunk; I sat with someone yesterday, while she created an account. I had to go completely overboard about using a unique password and saving it in triplicate.

It took about 2 minutes of me going overboard before she got it and agreed to keep it safe.

Is it possible to detect if the person copied it to clipboard?

If so perhaps a message saying "You have not copied this password, Steemit cannot recover passwords, if you lose this key, all potential profits will be lost, would you like to copy this to clipboard now?"

Then if they say no; an "are you sure screen" if they say yeah I'm sure, then an are you sure you're sure.

Then if they still say no, don't want to copy, then an "OK, on your own head be it screen."

I personally didn't get that when I signed up, but luckily I'm pretty disciplined with passwords after some very frustrating experiences.

$0.14

11 votes

gregory-f (68) · 8 years ago

The biggest problem with all this is that Google, Facebook, banks and other similar sites all have the ability to recover or reset passwords. Might be a little bit of a pain to do but with a small amount of effort you can get back into an account when you forget your password. So the masses have been trained that password losses are recoverable. Only in the crypto world are people on their own safe guarding their wallets.

But more and more people coming to Steemit have little or no previous experience with crypto. So they don't understand that there is no help desk to call when they forget their password. That's the biggest problem, this is uncharted territory for them. They don't realize until it's too late that there is no fallback plan if they haven't made one themselves.

$0.00

7 votes

dennis-estenson (32) · 8 years ago

I concur. Since the steemit community is inviting the masses here, they must make the danger of losing your password explicit, bold, and crystal clear to the user at every step.

$0.00

grittenald (57) · 8 years ago

You can prevent copy / paste in browsers as far as I am aware.

$0.00

bacchist (69) · 8 years ago

Thanks for documenting this process. I agree with your findings re: the password issue, which has been cited in the past as a barrier.

$0.13

4 votes

jsc (58) · 8 years ago

We just deployed some changes based on your suggestions. The password warnings are visible at all times and should have stronger language now. We can put something on the Blog screen when it is empty. Do you have any suggestions?

$0.13

pfunk (72) · 8 years ago

Awesome! Images are 404 though

$0.00

norbu (70) · 8 years ago

Just what was needed! Thanks. This will avoid heart-burns and make the transition to crypto pleasant for the un-initiated.

$0.00

razvanelulmarin (72) · 8 years ago (edited)

one thing!!! When i signed up had no clue that the username is not changeable. it pains me now a bit and i really can't make a new one given that i have all my sp here...maybe make this clear in big friendly letters as they say :)

$0.12

pangur-ban (58) · 8 years ago

Thanks for the reminder on passwords. With all the excitement of signing up and then trying to figure out what this was all about, I forgot to write mine down. Thank goodness, I still remember it. I registered through facebook and I was like a kid opening up a birthday present with my mom saying "Now don't forget to keep the receipt in case we need to..." "Yea, yea, mom..."

$0.12

damirkatusic (55) · 8 years ago

@pfunk it's a spot on review. I found it quite unclear as well. Now I'm preparing to do the neccessary changes and put it to the rest in a nice cold & dry storage;-)

$0.12

hedge-x (57) · 8 years ago

On the forgeting the password suject... if/when 2 years down the road you want to power down forgeting your password with $1000's worth of SD! This would not be good. Everyone its very important you make a backup for your private key!

$0.11

v1rtu0so (41) · 8 years ago

Interesting, and detailed assessment. I myself work as a technical writer and front-end web developer for a certain tech company (which shall remain nameless for sake of being shamed) and happen to agree with you pretty well across the board. I do not remember stumbling at any point during the login process, and might even go as far as to suggest they add in the ability to login through google and twitter as well.

$0.11

blackjincrypto (58) · 8 years ago

This is very useful for other people, at least it looks good for beginners community here

$0.04

conda (46) · 8 years ago

https://xkcd.com/936/
I will just leave this here

$0.00

magix (42) · 8 years ago

Good job! (y)

$0.00

mjgrae (52) · 8 years ago

Very nice attention to detail.

One way to mitigate the password issue is to help educate people on creating strong, memorable passwords. Strong passwords are great, but not necessarily good if you forget them for services like using Steemit!

One way to do this is to utilize a sort of "master" + "key" structure and use that across accounts. This involves coming up with a very secure "master" (which won't be too difficult to memorize since you're using it on many accounts) and then a service-specific, much simpler "key" which changes for each account. This way, the only thing you really have to remember is the key, and you can keep the master stored away or locked in muscle memory.

$0.00

kirill-1974 (39) · 8 years ago

Thank you for such a detailed presentation of information. The material you have prepared were very useful to me.

$0.00

exitmass (57) · 8 years ago

I frantically tried to karma up on a new reddit account last night because of this process. I refused to create a new facebook(I had proudly deleted mine 5 years ago) But reddit was not cooperating and users were holding my positive karma ransom unless I gave away steam keys???! So I went on an old joke facebook acct and signed up through that. Hopefully steemit doesn't force me to use facebook at any point or I'll be forced back into my hole home in the shire.

$0.00

robrigo (66) · 8 years ago

I think it would be good UX to promote the use of a password manager in the registration process as well. If steemit.com was open sourced I would submit a PR. :)

$0.00

coxzee (47) · 8 years ago

The platform is developed and it pleases! All steem!

$0.00

ibnu (55) · 8 years ago

Thanks, nice information about back up the password

$0.00

meesterboom (78) · 8 years ago

Good article, i particularly agree with the point on a welcome splash page for new members as it can be a little confusing when you are first plapped into the steem.

$0.00

jokerdarkknight (44) · 8 years ago (edited)

Nice Post :D

$0.00

noisy (67) · 8 years ago

you wrote:

If you like this or my other posts, click here for my blog page and hit the button in the upper right!

How this FOLLOW button works. Can I see later posts only from people which I follow? Where I can find it?

$0.00

pfunk (72) · 8 years ago

The functionality is not yet implemented but I'm inviting people who want to to follow now so that when it is, they can see my posts.

$0.00

stealthtrader (67) · 8 years ago

Perfect! I will definitely share this link with all my family and friends I'm trying to bring to Steemit :D

Thank you!

$0.00

pfunk (72) · 8 years ago

It's not really a guide, it's a bunch of screenshots of the various parts of making an account so people can see it all as it currently is and comment. Many of the accounts with the most Steem Power never had to make an account this way, and most probably haven't tried it out. And others may have made an account earlier with a different interface.

$0.00

robi-rusmana (49) · 8 years ago

$0.00

davedigi (25) · 8 years ago

Great write up.

I'll share that I originally created a steemit account under my Reddit account. Then I wanted to change my username so I tried to create another steemit account under that same Reddit account. Of course, I saw the error that said I couldn't do that, but then I just went ahead and created the account anyway and it worked. So I'm not sure if that is by design or if there was a bug that allowed me to do that. I can only assume that I now have two steemit accounts linked to the same Reddit account OR my second steemit account is not actually linked to my Reddit account.

$0.00

dev (49) · 8 years ago

I understood about the password while sign up, but I do agree that people will overlook this unless highlighted significantly during sign up process.

$0.00

dicov (53) · 8 years ago

Thanks for the info!

$0.00

christoryan (57) · 8 years ago (edited)

I have lost far less than I have made the last several years regarding "losing passwords". Eventually I learned to just memorize the keys if the account is important.

$0.00

alextsvirko (47) · 8 years ago (edited)

$0.00