Subject:
|
Re: Getting a password reset?
|
Newsgroups:
|
lugnet.admin.general
|
Date:
|
Sun, 23 Jul 2000 16:33:14 GMT
|
Viewed:
|
314 times
|
| |
|
|
> It'd probably go something like this --
>
> 1. You request a new password at some web page.
> 2. Server sends a short confirmation e-mail to your known e-mail address.
> 3. You receive the e-mail and click the hyperlink to bring up a webpage to
> confirm that you received the e-mail (prevents someone else from tampering
> and resetting your stuff without your permission).
> 4. At that webpage, you click a button to actually then generate a new pw
> for yourself.
>
> I like the way PayPal has separate confirmations, BTW, for e-mail and snail
> mail -- they mail one code to each and they have separate confirmations.
typically, i've seen it where:
1) you request a new password (giving a little bit of personal info, name, etc)
2) it's sent to your last known email address.
this way, if someone tries to tamper, the new password is sent to your email
address.... less steps, same out come. figure if they broke into your account,
they could click on a hyperlink too :)
|
|
Message is in Reply To:
 | | Re: Getting a password reset?
|
| (...) It'd probably go something like this -- 1. You request a new password at some web page. 2. Server sends a short confirmation e-mail to your known e-mail address. 3. You receive the e-mail and click the hyperlink to bring up a webpage to (...) (24 years ago, 23-Jul-00, to lugnet.admin.general)
|
19 Messages in This Thread:
 
 
- Entire Thread on One Page:
- Nested:
All | Brief | Compact | Dots
Linear:
All | Brief | Compact
|
|
|
|
