Category: Zone BBS Suggestions and Feedback
You know, I've noticed that it's relatively easy to hack someone's account. Is it possible that yall could create a security question thing like other sites that you have to answer if you forget your password instead of just having to know someone's email address?
Ok, it doesn't quite work that way! You should not be able to go and request a password for someone's account by entering their email address, unless of course you have access to their email inbox. What happens is that when you go to recover your passowrd, type in your email address and it send you an email to that address with a link to reset your password. The link is made withing the php code on the site, so when you request the new password, you get a completely randomly generated code which is assigned to your request. The security questions on other sites are a simple reminder to that person what their password is and in my opinion, easier to hack. I'm sure Jay, Chris N and everyone else that wrote the site took great care in taking people's security very seriously.
i agree with you there james.
i really don't see why someone would want to hack an account on here, but i think the e-mail way is best for now.
Also, remember that for security, not even Chris N or myself can retrieve your password. That's why we reset it instead of just resending it to your Email. Most of the big websites do the same thing.