Y
Hacker News
new
|
ask
|
show
|
jobs
by
nazbot
4696 days ago
Don't most sites require that you enter your old password before you can change it?
2 comments
corobo
4696 days ago
Indeed, I guess this is a +1 against storing passwords plaintext (well, obtainable in any case) - as a person could change your password and take over the account completely
link
taeric
4696 days ago
Not if you use the "reset" option. Which... you have their email account. So...
link
phablet
4696 days ago
Heh. I wasn't even thinking about the "Forgot your password" feature. Better still.
link