They will never ask you what your password is. If they do, don't tell them. Assume that a malicious individual can gain any information whatsoever about you, including credit card number and social security number, and don't accept that as proof that they "work for the company."
However, to tell you that you're making repeated errors (ie: constant incorrect-password messages) is not against the above policy. After all, they're saying "Just check and make sure you're typing it in right" not "What is your password?"
__________________
Eat antimatter, Posleen-boy!
|