Flip This Web Logo

Sending Passwords By Email

0 like 0 dislike
195 views
by TrustyKitty
It amazes me how many sites allow you to register, and then send you an e-mail to your registered address containing your password in plain-text. There is never a warning stating that the site will email the password you use, for all to see.

Sending passwords by e-mail works when you forget a password. The site changes it and e-mails you the new one, which you then use to log in and change it to something else. The e-mailed password is not active for very long, and it isn’t something you chose.

Sending you your own password, either in a welcome e-mail once you register, or as a response to a “forgot password” request is bad security. Really bad security.

Compounding this is the fact that e-mail providers such as Google Gmail state in their privacy policy that “deleted” e-mail may be kept indefinitely on their backup servers. As soon as someone e-mails you your password in plain-text, to a Gmail account, Google are likely to have that archived forever.

You can’t tell whether a site is going to do to this, so it isn’t possible to use a “less sensitive” password for sites which will e-mail your password back to you. If you have groups of passwords; one for sites you use to pay for things, one for forums, one for other less important sites, for instance, then you may enter your “usual” password without realising it may be compromised by being sent in an e-mail, visible to anyone along the way that wants to read it.

Sites should seriously consider the security implications of sending passwords by e-mail, especially if there is no prior warning that this will happen!

Please log in or register to reply to this post.

Related posts

0 like 0 dislike
0 comments 177 views
Internet Protection in 3 Easy Steps

Let me tell you something. I don't know everything there is to know about the Internet. . However, I do know how to ... around and want to keep them from seeing different types of web sites.

by OpinionOwl
0 like 0 dislike
0 comments 119 views
5 Surefire Tips for Effective Email Marketing

Over the past few years, research has continued to prove the benefits of e-mail marketing for business: low costs, high conversion ... the same major results as so many online and offline businesses.

by Tomatoad
0 like 0 dislike
0 comments 142 views
Email Autoresponders

Those of you who wish to take control of your business on the Internet with automated tasks need a functional and easy to use ... money - the results they give you will far outweigh the cost.

by Sumogre
0 like 0 dislike
0 comments 127 views
A Quick Look At Email Spam Filters

You must be eagerly finding for a way out to stop receiving Spam mails in your inbox. Take a quick look at email ... administrator can also customize it according to the requirement of the company.

by AmazingKitty
Connect with us:
...