Some forum security criticism

Offtopic. Everything that does not belong to PHC or PHCTool.
Post Reply
lockheed
Posts: 6
Joined: Wed 11. May 2011, 10:48

Some forum security criticism

Post by lockheed » Wed 11. May 2011, 10:58

What's wrong with people putting such draconian security measures on their forums?

I can understand 8-character long password, but requirement of mix of capital and lower case AND letters and digits? What is this? A bank account access?

Also, the confirmation code is the least readable I've seen. I nearly gave up.

The only thing you are missing is manual confirmation of accounts by admin. Hell, why not? And throw in mandatory finger-print reader record while you're at it. After all, posting here is a matter of national security.

User avatar
Docet
Posts: 44
Joined: Wed 23. Feb 2011, 18:30

Re: Some forum security criticism

Post by Docet » Wed 11. May 2011, 12:48

At first sight I think that

"Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group"

means the security policies are not handled directly by phc people...

Anyway if your Password (with "P" I mean the one you alway use) does not meet the requirements it might be too simple ^_^

Cheers

Post Reply