On 14/11/2019 03:35, Jim H wrote:
On Tue, 12 Nov 2019 15:53:16 -0700, in
, Ken Springer
wrote:

What I was really trying to ask was, do you ask the customer for the
answers before you start the job, or just hope they don't mind what you
used for answers?

Set the password to "Invalid" and then the security question doesn't
matter because when you get the password wrong you'll get a message
saying, "Your password is Invalid." Sorry, the devil made me say that.

I know a few people who put sweary messages in their passwords. Problem
is no-one will be able to see them if the organisation is storing them
properly.

No site or organisation should be able to tell you what your password
is: passwords should be stored encrypted with a salt.