By using this site, you agree to our updated Privacy Policy and our Terms of Use. Manage your Cookies Settings.
435,008 Members | 2,895 Online
Bytes IT Community
+ Ask a Question
Need help? Post your question and get tips & solutions from a community of 435,008 IT Pros & Developers. It's quick & easy.

Forgotten Password Reset

P: n/a
I want to enable visitors who have forgotten their password to request a new
one. I have seen that some sites simply require users to enter their e-mail
address. Then the server-side logic sends the password (perhaps a new
temporary one) to the e-mail address if it is a valid address in the db for
the site.

I'm looking for opinions and perspective on implementing something similar.
I understand that doing this would open up additional security risks - but
considering the tradeoffs, it might be worthwhile (no angry users calling me
at 2:00 AM). But as long as I'm going to do something like this, I want to
be smart about it. So, any feedback, links, etc that deal with this topic
would be appreciated..

Nov 19 '05 #1
Share this Question
Share on Google+
1 Reply


P: n/a
This article may give you some things to think about:
http://SteveOrr.net/faq/encrypt.aspx

--
I hope this helps,
Steve C. Orr, MCSD, MVP
http://SteveOrr.net
"Alfred E. Newman" <Mr******@WhatMeWorry.com> wrote in message
news:%2****************@TK2MSFTNGP14.phx.gbl...
I want to enable visitors who have forgotten their password to request a
new one. I have seen that some sites simply require users to enter their
e-mail address. Then the server-side logic sends the password (perhaps a
new temporary one) to the e-mail address if it is a valid address in the db
for the site.

I'm looking for opinions and perspective on implementing something
similar. I understand that doing this would open up additional security
risks - but considering the tradeoffs, it might be worthwhile (no angry
users calling me at 2:00 AM). But as long as I'm going to do something
like this, I want to be smart about it. So, any feedback, links, etc that
deal with this topic would be appreciated..

Nov 19 '05 #2

This discussion thread is closed

Replies have been disabled for this discussion.