miniBB Support Forums | 15 years on The Web
miniBB ®

miniBB

®
 
 | Forums | Register | Reply | Search | Statistics | Manual |
The Other miniBB Support Forums / The Other /   
 

Reset Password

 
Author Josh McGilberry
Partaker
#1 | Posted: 30 May 2004 20:45 
I don't know if this qualifies as a bug or not, but it seems to be somewhat of a problem to me.

To reset a password, all you have to know is your e-mail address right? So if someone has their e-mail address shown as public, then someone else could reset their password for them and force them to check their e-mail and enter in the new password. Plus they could do this to harras them as often as they liked.

If it were me, the solution would be to have some kind of security question like a lot of places do, mothers maiden name, or something like that, to prevent just anyone from being able to reset someones password.

Author Josh McGilberry
Partaker
#2 | Posted: 30 May 2004 21:19 
Nevermind. I actually read the e-mail and saw where they have to click the link to change it :) Don't I feel stupid now!

Thanks everyone

The Other miniBB Support Forums / The Other /
 Reset Password
 Share Topic's Link

Your Reply Click this icon to move up to the quoted message


 ?
You are welcome to post anonymously, by entering a nickname with no password (if the similar Username has not been taken yet), or by leaving both fields empty. If you have a forums account, you can also sign in from this page without posting a message, or sign in and post at once.


Before posting, make sure your message is compliant with our forum posting rules. If not, it may be locked or deleted with no explanation.

 
 
miniBB Support Forums Powered by Forum Software miniBB ® Home  Features  Requirements  Demo  Download  Showcase  Gallery of Arts
Compiler  Premium Extensions  Premium Support  License  Contact Us
Proceed with the Captcha add-on: protect your miniBB-forums from the automated spam and flood.
↑ TOP