Author Topic: Your shop is insecure (Read 1842 times)

matze · « **on:** July 17, 2013, 06:30:20 pm »

Ouch... that hurt... I received a registration email... with my password in plain text... over the internet... just great.

Thx guys... one more password wasted

.

jjmontes · « **Reply #1 on:** July 22, 2013, 01:46:26 pm »

Hello Matze.

Thank you for the feedback. You are right, this doesn't seem the best practice. It is worth mentioning that passwords are not stored in plain text, they are stored as salted hashed passwords in our database, but sending them through email may not be the best idea.

It's useful from a usability point of view for some user profiles, but we understand your concern. We'll be revisiting this soon trying to improve the registering mechanism and avoiding sending secrets over email.

In any case, sorry about that password.

matze · « **Reply #2 on:** July 27, 2013, 09:04:13 pm »

Thx for the clarification!

Otherwise the system is just great!

Cookies usage

Author Topic: Your shop is insecure (Read 1842 times)

matze

Your shop is insecure

jjmontes

Re: Your shop is insecure

matze

Re: Your shop is insecure