Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
staunch
on Feb 28, 2009
|
parent
|
context
|
favorite
| on:
Bad Security at Evite
Sending your password after signup doesn't necessarily mean they're storing it permanently.
ardell
on Feb 28, 2009
|
next
[–]
You're absolutely correct, but in evite's case they are storing them permanently. That's actually the reason I posted this was that I forgot my password and requested a reset (~5 years after signup) and they sent it to me in plain text.
myoung8
on Feb 28, 2009
|
prev
[–]
And it doesn't mean they're storing it in cleartext either. For some reason I don't think he'd understand how virtual attributes work, though...
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
