GoFuckYourself.com - Adult Webmaster Forum - View Single Post

kektex · 02-17-2011, 04:39 PM

I noticed the other day that EMC2Payouts stores user passwords in their system. I requested my forgotten password and got it back in my email, instead of a way to simply reset it.

Please, please,pretty please, learn something from security debacles like Gawker.

http://codahale.com/how-to-safely-store-a-password/

http://www.codinghorror.com/blog/201...passwords.html

http://www.codinghorror.com/blog/200...correctly.html

02-17-2011, 04:39 PM
kektex Confirmed User Industry Role: Join Date: Mar 2005 Location: elkektex at gmail Posts: 1,813	I noticed the other day that EMC2Payouts stores user passwords in their system. I requested my forgotten password and got it back in my email, instead of a way to simply reset it. Please, please,pretty please, learn something from security debacles like Gawker. http://codahale.com/how-to-safely-store-a-password/ http://www.codinghorror.com/blog/201...passwords.html http://www.codinghorror.com/blog/200...correctly.html Last edited by kektex; 02-17-2011 at 04:41 PM..