Comment on OP finds vulnerability where a forum sends you your password in plaintext over email and everyone misses the forest for the trees

<- View Parent
schmidtster@lemmy.world ⁨1⁩ ⁨year⁩ ago

Than direct it at the service provider? Oh wait it got fixed a while ago.

Also where does their liability stop? Should they also just assume everyone is compromised? Where does the users onus come into play? I guess they shouldn’t send password resets than, since they should assume that their email is compromised already….

Yeah that’s actually a terrible idea if they must assume that they must protect everyone. Sorry can’t reset your password your email must be compromised.

source
Sort:hotnewtop