Bongofish
December 15, 2017, 09:30:37 AM *
Welcome, Guest. Please login or register.

Login with username, password and session length
News: You can attach photos hosted by the forum rather than using an external image hosting site, this means they will stay forever and not disappear after a year or two.
 
   Home   Help Search Login Register  
Pages: [1]
  Print  
Author Topic: registration-mail with cleartext password: Very dangerous!  (Read 1794 times)
pixxelfrizzel
New Poster
*
Posts: 3


View Profile
« on: November 17, 2013, 06:03:05 PM »

I see that you send the password with the registration-mail. It would be good to disable that feature because security risk. Any passwd entered at registration page is freely readable by anyone worldwide. So its burned out and cannot be used anymore anywhere, not even when you use a special kind of password.

Please could you change this behaviour? Thanks a lot.
Logged
bernard
Administrator
Hero Member
*****
Posts: 2584


pato mania


View Profile
« Reply #1 on: November 18, 2013, 04:37:19 PM »

I see your point. I just hope you didn't use a password that can unveil how to access all the other sites you are registered with... (please don't tell out loud if the answer is yes!) 

I'll forward this request to the site owner.  If we cannot change that, maybe we can at least warn that "the password will be sent as cleartext in an email during the registration". Maybe you wouldn't have registered in the first place or selected another one.
Logged
Pages: [1]
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.21 | SMF © 2015, Simple Machines Valid XHTML 1.0! Valid CSS!