test1
September 22, 2017, 09:44:35 PM *
Welcome, Guest. Please login or register.

Login with username, password and session length
News: You may have to login twice the first time,  but we don't know why - Erm I mean it's a security thing yeah that's it - security.
 
   Home   Help Search Login Register  
Pages: [1]
  Print  
Author Topic: registration-mail with cleartext password: Very dangerous!  (Read 1712 times)
pixxelfrizzel
New Poster
*
Posts: 3


View Profile
« on: November 17, 2013, 06:03:05 PM »

I see that you send the password with the registration-mail. It would be good to disable that feature because security risk. Any passwd entered at registration page is freely readable by anyone worldwide. So its burned out and cannot be used anymore anywhere, not even when you use a special kind of password.

Please could you change this behaviour? Thanks a lot.
Logged
bernard
Administrator
Hero Member
*****
Posts: 2584


pato mania


View Profile
« Reply #1 on: November 18, 2013, 04:37:19 PM »

I see your point. I just hope you didn't use a password that can unveil how to access all the other sites you are registered with... (please don't tell out loud if the answer is yes!) 

I'll forward this request to the site owner.  If we cannot change that, maybe we can at least warn that "the password will be sent as cleartext in an email during the registration". Maybe you wouldn't have registered in the first place or selected another one.
Logged
Pages: [1]
  Print  
 
Jump to:  


Powered by MySQL Powered by PHP Powered by SMF 1.1.21 | SMF © 2015, Simple Machines Valid XHTML 1.0! Valid CSS!