| |||
Views: 88,493,695 |
Main | FAQ | Uploader | IRC chat | Radio | Memberlist | Active users | Latest posts | Calendar | Stats | Online users | Search | 04-27-24 06:56 PM |
|
Guest: Register | Login |
0 users currently in Help/Suggestions/Bug Reports | 1 guest |
Main - Help/Suggestions/Bug Reports - Suggestion: Password reminder feature | New thread | New reply |
Traffic Light |
| ||
Level: 64 Posts: 643/939 EXP: 2210639 Next: 3458 Since: 02-29-08 Last post: 4609 days Last view: 1703 days |
|
paulguy |
| ||||||||||
Flurry Level: 37 Posts: 216/258 EXP: 327014 Next: 11239 Since: 04-10-07 From: Buffalo, NY Last post: 5029 days Last view: 4570 days |
|
Mega-Mario |
| ||
Spamming from alt accounts. Level: 81 Posts: 603/1610 EXP: 4880693 Next: 112156 Since: 09-10-08 Last post: 3590 days Last view: 3010 days |
Posted by Traffic Light Hm... what if you're a hacker, and pretend to be the person who lost his password? It'd be impossible to know if the person didn't enter an email address in his profile. While we're at it, maybe the board should ask for passwords twice... just like other boards... so that if you have a typo in your password, you have twice less chance to end screwed... Posted by paulguy An online MD5 decrypter can (or cannot, depending on the password's complexity) find the original password from a MD5 hash. ____________________ Kafuka -- ROM hacking Kuribo64 -- we hack shit |
Kawa |
| ||
CHIKKN NI A BAAZZKIT!!! 80's Cheerilee is best pony Level: 138 Posts: 3226/5344 EXP: 30948160 Next: 714821 Since: 02-20-07 From: The Netherlands Last post: 4499 days Last view: 2635 days |
How about this? A security question that only you would know the answer to, and if you forget your password...
1) Go to Password Reset page 2) Enter name 3) Recieve security question 4) Enter answer to question and new password 5) Receive bacon ____________________ Wife make lunch - Shampoo Opera - give it a spin Spare some of your free time? <GreyMaria> I walked around the Lake so many goddamn times that my sex drive was brutally murdered Kawa rocks — byuu |
blackhole89 |
| ||
The Guardian Moloch whose eyes are a thousand blind windows! Level: 124 Posts: 2885/4196 EXP: 21535231 Next: 301370 Since: 02-19-07 From: Ithaca, NY, US Last post: 472 days Last view: 85 days |
|
Kawa |
| ||
CHIKKN NI A BAAZZKIT!!! 80's Cheerilee is best pony Level: 138 Posts: 3227/5344 EXP: 30948160 Next: 714821 Since: 02-20-07 From: The Netherlands Last post: 4499 days Last view: 2635 days |
Or that, yeah. ____________________ Wife make lunch - Shampoo Opera - give it a spin Spare some of your free time? <GreyMaria> I walked around the Lake so many goddamn times that my sex drive was brutally murdered Kawa rocks — byuu |
Mega-Mario |
| ||
Spamming from alt accounts. Level: 81 Posts: 605/1610 EXP: 4880693 Next: 112156 Since: 09-10-08 Last post: 3590 days Last view: 3010 days |
Posted by blackhole89 This may not work if the person's IP has changed since his last login. Unless he's got a static IP. But for that you'd need to ask yor ISP and all... Email addresses would be the way to go. Like, you tell the admin to email you and tell him you will reply a certain phrase, and, if the person has replied the email with the exact same phrase, it's okay... ____________________ Kafuka -- ROM hacking Kuribo64 -- we hack shit |
Nikolaj |
| ||
Level: 43 Posts: 89/384 EXP: 546432 Next: 18614 Since: 11-19-09 From: Denmark Last post: 4536 days Last view: 3220 days |
Posted by Mega-MarioThat sounds like a good idea!Posted by blackhole89 |
Bukkarooo |
| |||
Fuzzy Son of a bitch, I'm sick of these dolphins... Level: 59 Posts: 777/778 EXP: 1634563 Next: 38565 Since: 10-15-08 From: Florida Last post: 5185 days Last view: 4952 days |
|
NightKev |
| ||
Cape Luigi Level: 131 Posts: 4126/4792 EXP: 26232830 Next: 191790 Since: 03-15-07 Last post: 3736 days Last view: 3647 days |
"Security" questions just make passwords more insecure. Why bother trying to figure out someone's password if you can figure out a much easier security question?
Also, bukk, congrats on post 777. ____________________ |
Kawa |
| ||
CHIKKN NI A BAAZZKIT!!! 80's Cheerilee is best pony Level: 138 Posts: 3230/5344 EXP: 30948160 Next: 714821 Since: 02-20-07 From: The Netherlands Last post: 4499 days Last view: 2635 days |
Posted by BukkaroooOr not at all there. ____________________ Wife make lunch - Shampoo Opera - give it a spin Spare some of your free time? <GreyMaria> I walked around the Lake so many goddamn times that my sex drive was brutally murdered Kawa rocks — byuu |
Mega-Mario |
| ||
Spamming from alt accounts. Level: 81 Posts: 625/1610 EXP: 4880693 Next: 112156 Since: 09-10-08 Last post: 3590 days Last view: 3010 days |
That's why most boards ask for a valid email address upon registration. It makes dealing with lost passwords automatic and therefore a whole lot easier. ____________________ Kafuka -- ROM hacking Kuribo64 -- we hack shit |
NightKev |
| ||
Cape Luigi Level: 131 Posts: 4132/4792 EXP: 26232830 Next: 191790 Since: 03-15-07 Last post: 3736 days Last view: 3647 days |
Maybe just have the board email you the username/password you signed up with (assuming you enter an email address) like some do. Then there doesn't have to be a record of your pass unencrypted at the board itself. ____________________ |
Mega-Mario |
| ||
Spamming from alt accounts. Level: 81 Posts: 626/1610 EXP: 4880693 Next: 112156 Since: 09-10-08 Last post: 3590 days Last view: 3010 days |
Or you can just prompt the user to reset his password.
This way, no unencrypted password in the board's database, no unencrypted password in an email... ____________________ Kafuka -- ROM hacking Kuribo64 -- we hack shit |
Main - Help/Suggestions/Bug Reports - Suggestion: Password reminder feature | New thread | New reply |
© 2005-2023 Acmlm, blackhole89, Xkeeper et al. |
MySQL - queries: 54, rows: 76/79, time: 0.016 seconds. |