cruinne:
While I understand the concern that if someone has access to your email account they can see your password then log into your RPoL account, I wonder how that's different to any other scheme which uses your email to verify who you are and to reset your password.
The primarily difference is, they can only reset your password, they can't know what your password was to begin with.
cruinne:
Anyone who has access to your email account also has access to those. And if you're using the same password on your online banking as in RPoL, I'd bet they already know it because they used it to look at your email (where you also used it).
Not true. It wouldn't be terribly difficult for someone to steal a person's iPod or iPhone and use their mail app to check their e-mail (without needing a password). Gathering passwords at that point could be a goal, and RPoL's password retrieval would be perfect in assisting them.
Once again, I'm freely admitting to the unlikely hood of this, and to any danger of a stolen password even in this manner having some blame on the user for reusing the password else where.
I merely question, why down play the importance of protecting users? Why not take some measures to help them?
cruinne:
I suppose the work-suggestions for jase are simply for the sake of those who (a) use the same password for all their online accounts from banking all the way to RPoL, and (b) somehow manage to let someone else access their email account without actually letting that mysterious someone know their password to it, on the same occasion that (c) they've forgotten their one password (which they use everywhere), and had to ask RPoL to email it to them.
I agree with you, up until (c). It isn't necessary that the user requested their own password. It's only necessary that they have an e-mail from RPoL already. At that point, it's not reasonably hard to imagine someone intent on getting the user's password to go to the RPoL site, request the forgotten password, and then getting it in plain text.
Once again, I freely admit to the improbability of this happening as a whole, and the user's culpability in allowing it to happen (both by compromising their e-mail, and by reusing the password), but that seems like a sketchy defense to not have some security in place at RPoL.
Resetting the password is hardly (if it all) more inconvenient to the user, and it's immensely safer, so why down play the benefit?
This message was last edited by the user at 04:01, Fri 23 July 2010.