1 post • joined 23 Sep 2008
I don't think you get the concept.
1. DO NOT store plaintext passwords in a database.
2. DO NOT store the information required to verify passwords in the same database as the passwords.
3. If a user forgets a password, generate a new one and send it to them.
- Product round-up Ten excellent FREE PC apps to brighten your Windows
- Review Tough Banana Pi: a Raspberry Pi for colour-blind diehards
- Product round-up Ten Mac freeware apps for your new Apple baby
- Analysis Pity the poor Windows developer: The tools for desktop development are in disarray
- Chromecast video on UK, Euro TVs hertz so badly it makes us judder – but Google 'won't fix'