Problem description: Anybody can pretend that they lost
their password, and can request another. They only
have to know the user's login name. Imagine a poor
user, who have to change theilr email adress on a daily
base, just becouse a bad guy can force it daily.
Suggestion: A feature to disable regenerating forgotten
password based on username. (Allow this only if the
correct email address is given.)
Gain: medium security. If coupled with the other
request - admin can force to hide all email adresses -
would greatly enhance user's privacy and peace.
Log in to post a comment.