111000@reddthat.com to Old People Facebook@reddthat.com • 11 months agoYikes 😬imagemessage-square6 fedilinkarrow-up1162
arrow-up1162imageYikes 😬111000@reddthat.com to Old People Facebook@reddthat.com • 11 months agomessage-square6 Commentsfedilink
minus-squarelaxsill@infosec.pubhexbear40·11 months agoTheir policy should just be to reset the password immediately and have the user set a new one. This is one hell of a risk. linkfedilink
minus-squareXTornado@lemmy.mlhexbear6·edit-211 months agoThat would imply they have to test that the credentials are correct though. Otherwise I can just put somebody's user and put some fake password and they would reset it and disconnect the account of that user and annoy him. linkfedilink
Their policy should just be to reset the password immediately and have the user set a new one. This is one hell of a risk.
That would imply they have to test that the credentials are correct though.
Otherwise I can just put somebody's user and put some fake password and they would reset it and disconnect the account of that user and annoy him.