Larian Banner
Previous Thread
Next Thread
Print Thread
Page 2 of 2 1 2
Joined: Oct 2020
stranger
Offline
stranger
Joined: Oct 2020
Hello

It is incredible, that a company like yours does not take care about the MOST elementary security protection...
Please protect urgently our logins by using HTTPS on your forum!!

Thanks a lot,
best regards,
Kalthen

Joined: Oct 2020
stranger
Offline
stranger
Joined: Oct 2020
Came here to post this. Do not send plain text passwords via email. There is simply no reason to do this.

Joined: May 2010
Location: Oxford
Duchess of Gorgombert
Online Sleepy
Duchess of Gorgombert
Joined: May 2010
Location: Oxford
As mentioned, an https-enabled forum is currently being tested and will be rolled out soon. Passwords are emailed out at the time of account creation which is bad practice but they are at least not stored in cleartext but one-way encrypted. The software does not provide a way to disable it; if it is not fixed in a newer release (or if we are not going to upgrade imminently) I will see what I can do about rewriting the registration script myself.

Last edited by vometia; 08/10/20 09:58 PM.

J'aime le fromage.
Joined: Mar 2003
Location: Canada
Larian Studios
Offline
Larian Studios
Joined: Mar 2003
Location: Canada

The forum has been updated to https, and passwords are no longer being sent by email.

Raze #739860 29/11/20 08:42 AM
Joined: Oct 2020
stranger
Offline
stranger
Joined: Oct 2020
Originally Posted by Raze

The forum has been updated to https, and passwords are no longer being sent by email.

Thanks for the quick fix! Much appreciated!

Page 2 of 2 1 2

Moderated by  Larian_QA, Lar_q, Lynn, Macbeth, Raze 

Link Copied to Clipboard
Powered by UBB.threads™ PHP Forum Software 7.7.5