undefined | Better HN

0 pointsraganwald14y ago0 comments

If the password reset function sends a temporary password just as you say, THEN it is not that big a deal. On the other hand, if they are storing every user's original password in such a way that they send the user their existing password...

I believe this is the scenario most people here think is happening.

0 comments

StavrosK14y ago

Oh, I'm sure it is. I'm saying that they should send a temporary password instead.

j / k navigate · click thread line to collapse

0 pointsraganwald14y ago0 comments

I believe this is the scenario most people here think is happening.

0 comments

StavrosK14y ago

Oh, I'm sure it is. I'm saying that they should send a temporary password instead.

j / k navigate · click thread line to collapse