WebApp Sec: Re: Password Recovery (long) was Re: "Forgot Password" function

Nmap Security Scanner

Intro

Docs
Security Lists

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

WebApp Sec mailing list archives

Re: Password Recovery (long) was Re: "Forgot Password" function

From: Charles Miller <cmiller () pastiche org>
Date: Sun, 20 Oct 2002 09:26:51 +1000


On Sunday, October 20, 2002, at 02:22  AM, Sverre H. Huseby wrote:

If the user was allowed to upload or paste his PGP/GPG/whatever public
key during registration, this isn't impractical at all, as I see it.

Whenever someone mentions "key management" to me, I break out in a coldsweat and hide under my desk.


Then again, maybe that's just me.

Charles Miller

Current thread:

Re: "Forgot Password" function, (continued)
- Re: "Forgot Password" function Mark Curphey (Oct 18)
- Re: "Forgot Password" function Kevin Spett (Oct 18)
- Re: "Forgot Password" function Brecrost Jones (Oct 18)
  - Password Recovery (long) was Re: "Forgot Password" function Charles Miller (Oct 19)
    - Re: Password Recovery (long) was Re: "Forgot Password" function Sverre H. Huseby (Oct 19)
    - Re: Password Recovery (long) was Re: "Forgot Password" function Charles Miller (Oct 19)
- RE: "Forgot Password" function wsmith (Oct 18)
- RE: "Forgot Password" function Matthew_Chalmers (Oct 19)
- RE: "Forgot Password" function William Bartholomew (Oct 20)
  - Re: "Forgot Password" function Kevin Spett (Oct 20)