| View previous topic :: View next topic |
| Author |
Message |
Ikopar
Joined: 26 May 2006
Posts: 168
|
| If sending a username and password through email when someone forgets their info is such a bad idea, then why do so many sites do it, and what better way is there? |
| |
 |
|
|
|
Roombor
Joined: 02 Jun 2006
Posts: 111
|
Why is it a bad idea?
Yeah
So does it when the users enters his password on your site
(unless you use https :) |
| |
|
|
Ikopar
Joined: 26 May 2006
Posts: 168
|
| Yeah, for that i'm hoping to use some kind of encryption |
| |
|
|
Roombor
Joined: 02 Jun 2006
Posts: 111
|
| Do you think it's necessary for your site to have that kind of security? |
| |
|
|
Ikopar
Joined: 26 May 2006
Posts: 168
|
| Probably not, but people i've talked to have kind of made me paranoid |
| |
|
|
Roombor
Joined: 02 Jun 2006
Posts: 111
|
Haha :)
You can send out pgp encrypted mail ;) |
| |
|
|
Ikopar
Joined: 26 May 2006
Posts: 168
|
| Oh man, i don't know if my hosting thing supports that, i've never even heard of it |
| |
|
|
Roombor
Joined: 02 Jun 2006
Posts: 111
|
| Btw you dont have to send the password in the mail |
| |
|
|
Ikopar
Joined: 26 May 2006
Posts: 168
|
| What else would i do, create a link with a random key in it that gives them the password on my site? |
| |
|
|
Roombor
Joined: 02 Jun 2006
Posts: 111
|
Yeah something like that
Theoretically they can sniff out that link ofcourse |
| |
|
|
| Page 1 of 3 |
Goto page 1, 2, 3 Next |
|
FAQ
Archive
Log in
Register
