HomeRoast Digest


Topic: The new SM forum - a request to Tom! (6 msgs / 276 lines)
1) From: Dhananjaya
Tom,
One request, PLEASE do not send back passwords over clear text e-mail during
registration. It's a horrible breach of privacy and security. I can't
believe this practice is still going on in this day and age! I realize it
may be a "feature" of the forum software, but please do try to eliminate it.
Looking forward to the forum!
DJ

2) From: djgarcia
Tom,
One request, PLEASE do not send back passwords over clear text e-mail during
registration. It's a horrible breach of privacy and security. I can't
believe this practice is still going on in this day and age! I realize it
may be a "feature" of the forum software, but please do try to eliminate it.
Looking forward to the forum!
DJ

3) From: Jack M. Rogers
Tom, that could very easily be done.  You just edit the email template so that it sends NO password.  If the user can't remember it, they'll have to request a new one, but the one they're given is at least only for temporary use.
DJ, the forum software does not provide a way to encrypt the password in email.  But this may disappoint you more--the phpbb forum login is also clear text--not secure http.  So if you're on an unencrypted wireless network, your password is very vulnerable.  It's best to NOT use the same password on multiple sites, for this reason.
Jack

4) From: Josh Schwartz
Oh, thanks for pointing that out...we hadn't noticed that, and I completely
agree that nobody should ever email a plaintext password.  I'm removing that
right now from the forum backend.  Apologies to those this already happened
to.
-Josh
On Sat, May 23, 2009 at 1:54 PM, Dhananjaya  wrote:
<Snip>
Homeroast mailing list
Homeroasthttp://www.sweetmariascoffee.com/gallery/main.php?g2_itemIdx20">http://lists.sweetmariascoffee.com/listinfo.cgi/homeroast-sweetmariascoffee.comHomeroast community pictures -upload yours!) :http://www.sweetmariascoffee.com/gallery/main.php?g2_itemIdx20

5) From: raymanowen
Of course, there is a guy that can never remember his password, so has to
reset it every time he logs in somewhere. Let 'em figure it out- it won't be
the same by the time it's used...
Six different email addys in Wales with Tagalog and misspelled English
passwords. Like to set up a Cymraeg choffi bobi / berwedda dafarn. (roast/
brew pub!)
This forum is another neat source of learning. Thanks, Tom -ro
On Sat, May 23, 2009 at 2:54 PM, Dhananjaya  wrote:
<Snip>
-- 
Persist in old ways; expect new results - suborn Insanity...
Homeroast mailing list
Homeroasthttp://www.sweetmariascoffee.com/gallery/main.php?g2_itemIdx20">http://lists.sweetmariascoffee.com/listinfo.cgi/homeroast-sweetmariascoffee.comHomeroast community pictures -upload yours!) :http://www.sweetmariascoffee.com/gallery/main.php?g2_itemIdx20

6) From: Dhananjaya
Josh, no problem. Thanks for the re3ctification. I'll change the PW just in
case :-). Also make sure the password change process doesn't send back the
new password.
Thanks for all the hard work on the forum and list, not to mention the great
coffee!
DJ


HomeRoast Digest