[TYPO3-dev] TYPO3.org Login: Forgot your password mechanism

ries van Twisk typo3 at rvt.dds.nl
Sun Nov 30 13:07:44 CET 2008


On Nov 30, 2008, at 7:00 AM, Ingmar Schlecht wrote:

> Xavier Perseguers wrote:
>> Hi,
>>
>>> thanks for your feedback.
>>>
>>> The issue is already known and being worked on.
>>
>> Waaaaah! Christoph was right? I cannot believe it!
>
> Yes, but it's only temporary. Also, it is not insecure, it just offers
> an easy way of annoying people by requesting new passwords for them a
> lot of times.

I am sorry Ingo,

why do you think the offered method was secure?

Requesting a other users password as I read and understand it from  
Christoph sounds pretty much insecure to me.

Ries

>
>
> cheers
> Ingmar
>









More information about the TYPO3-dev mailing list