March 12, 2022 at 11:23 pm
#1235
- Thank you!
- Probably a bad idea to e-mail old chosen password in plaintext. Either gensym a fresh one, or mail a generic message saying “it was restored to your old password.” Why? Sloppy people using the same password everywhere, and e-mail transmissions aren’t necessarily secure, depending on destination’s old TLS or !!nothing!! smptd support for encrypted connection.
- Thank you!