When I sign up for your site and type in a password, I don’t want or need you to include my password in the confirmation email. If I lose/forget the password, I will hit the ‘lost password?’ link. I will not search my email for the password as I immediately deleted that email you sent, even if the email had other useful information.
If I hit the ‘lost password’ link and put in my email address, do not email me my original password. Send me a new temporary password and then direct me to a page where I can enter in a new password.
I DON’T EVER want to receive an email with my original password. Is this really so strange? The chance of someone intercepting an unencrypted email is rather high, plus my password is then sitting around in Outlook, and, since I forward my personal email to Gmail, on Google’s servers.
And why do you have my unencrypted password on your server, anyway? You should have encrypted it when I first gave it to you before you stored it in your database. It’s 2006, learn some basic data security already.
Posted by Stephen Bronstein at April 9, 2006 09:29 PM