Beefy Boxes and Bandwidth Generously Provided by pair Networks
No such thing as a small change
 
PerlMonks  

Re: Requiring old password in order to change your password

by andreas1234567 (Vicar)
on Jan 03, 2011 at 09:57 UTC ( #880163=note: print w/replies, xml ) Need Help??


in reply to Requiring old password in order to change your password

the path of much bigger improvements in security
Is HTTPS support on the list?
--
No matter how great and destructive your problems may seem now, remember, you've probably only seen the tip of them. [1]
  • Comment on Re: Requiring old password in order to change your password

Replies are listed 'Best First'.
Re^2: Requiring old password in order to change your password (https)
by tye (Sage) on Jan 03, 2011 at 14:07 UTC

    Only for when logging in, yes.

    - tye        

      Thanks, that's one step in the right direction. Additionally, it would be great to consider (optionally) allowing https for all communications (not just logins) in your on-going security review of the site. Some claim SSL/TLS is not computationally expensive any more but that is of course subject to debate.

      Https everywhere is getting a lot of traction and the number of sites that supports https "all the way" is large and growing. It would be great to add perlmonks.org to the list:

      $ ls https-everywhere/src/chrome/content/rules/*.xml | wc -l 426
      --
      No matter how great and destructive your problems may seem now, remember, you've probably only seen the tip of them. [1]

        Yes, allowing https always is on the list after web server performance mitigation is sustained.

        - tye        

        Count me in. I strongly support the widespread use of https.

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://880163]
help
Chatterbox?
LanX Gesundheit! :)
talexb wonders about dividing developers in those born before the Unix timestamp of zero .. and after. Spoiler: I'm before.
chacham remebers I am a mad scientist
[stevieb]: talexb I'm after by a few years, but we can still be friends because you live in my hometown ;)
[LanX]: White House
[LanX]: next inauguration ?

How do I use this? | Other CB clients
Other Users?
Others browsing the Monastery: (8)
As of 2017-08-18 13:29 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?
    Who is your favorite scientist and why?



























    Results (303 votes). Check out past polls.

    Notices?