Re: Emailing Passwords? In 2020?

It's been ten years ... - Pants are still down, 11 years later. No one cared to fix the basic problem, a database full of plain text passwords without hashing and salting, and a password recovery mechanism from the age of the dinosaurs.

If perlmonks wasn't that useful and entertaining, I would simply disable my account and search for some other place.

So the second best thing to do is to follow the advice of LanX from Re^2: It's been ten years ...:

Best is to stick with a randomly generated password and to store it into your browser or password manager.

And of course: Don't use that nearly-public perlmonks password for anything else.

Alexander

--
Today I will gladly share my knowledge and experience, for there are no sweeter words than "I told you so". ;-)

Comment on Re: Emailing Passwords? In 2020?

Replies are listed 'Best First'.
Re^2: Emailing Passwords? In 2020? by Bod (Parson) on Nov 15, 2020 at 18:08 UTC
This is one symptom of a much bigger problem... This entire site is incredibly archaic and shows no sign of anyone with the power to change that caring. That is slightly concerning in itself but, as one of the main sites of Perl wisdom, it reinforces the opinion of many that Perl itself is archaic, outdated and unnecessary. Surely here should be a showcase for all the wonderful things Perl and its programmers are capable of in the modern world.	[reply]
Re^3: Emailing Passwords? In 2020? by marto (Cardinal) on Nov 15, 2020 at 18:41 UTC
The site is written in a fork of everything2, which isn't exactly modern. Modern frameworks such as Mojolicious have far lower barriers for participation, and represent what can be achieved with the modern internet. If I had the spare time I'd volunteer to work on some progress in this area.	[reply]
Re^4: Emailing Passwords? In 2020? by Bod (Parson) on Nov 15, 2020 at 19:43 UTC
Fair points up to a point marto. But, regardless of the framework used, there is no intrinsic reason why form input cannot be post-formatted instead of users having to wrap comments in HTML markup. I know little about web frameworks but your comments validate, in my mind at least, my approach to writing web sites which is to do it myself rather than relying on other people's libraries. After all, for the most part, the web is only made up of text organised with a bit of markup here and there :)	[reply]
Re^5: Emailing Passwords? In 2020? by marto (Cardinal) on Nov 15, 2020 at 20:10 UTC
Re^6: Emailing Passwords? In 2020? by Bod (Parson) on Nov 15, 2020 at 22:45 UTC
Some notes below your chosen depth have not been shown here


Do you know where your variables are?
	PerlMonks