LumberJocks

Concerns with new account setup

  • Advertise with us

« back to LumberJocks.com Site Feedback forum

Forum topic by JDJ posted 05-03-2011 10:15 PM 1036 views 0 times favorited 5 replies Add to Favorites Watch
View JDJ's profile

JDJ

14 posts in 2047 days


05-03-2011 10:15 PM

Hello,

I just setup my account today and I was concerned that I could not use special characters in the password. I also thought it was a bad idea to send my password over email as that is an insecure form of communication. I just thought I would share my concerns. I love the site!


5 replies so far

View Mark Shymanski's profile

Mark Shymanski

5314 posts in 3179 days


#1 posted 05-23-2011 06:31 AM

Why would you send your password anywhere? I don’t think I understand what it is that you are asking. I’ve never really been to concerned about a secure password here, I am now wondering if I should be…?!

-- "Checking for square? What madness is this! The cabinet is square because I will it to be so!" Jeremy Greiner LJ Topic#20953 2011 Feb 2

View WinterSun's profile

WinterSun

163 posts in 2076 days


#2 posted 05-23-2011 07:08 AM

Mark: the concern was that the account activation email that the site sends out contains your password. That’s not the greatest idea from a security perspective, but you can always change your password. Regarding special characters… I’ve never had a problem creating reasonably strong passwords with alphanumerics.

I could agree with JDJ’s concerns if LJs was a site that dealt in sensitive personal information… but it’s not. I love this site, but I won’t lose any sleep over the security of my account.

-- Rory // Milwaukee, WI

View mtkate's profile

mtkate

2049 posts in 2792 days


#3 posted 05-23-2011 11:04 AM

The fact that we can’t browse in https does concern me also. I think we should be sending feedback on this.

View Mark Shymanski's profile

Mark Shymanski

5314 posts in 3179 days


#4 posted 05-26-2011 05:27 AM

Hmmm, I guess I’ve forgotten what was sent to me when I signed up, I didn’t remember receiving and email with my password. Thank your Rory for explaining that.

Why would you need to browse in https? There is no financial information going back and forth, or anything of a secure nature why add to the administration burden? I don’t mean to be argumentative I just don’t understand the need for more ‘security’ on this site.

-- "Checking for square? What madness is this! The cabinet is square because I will it to be so!" Jeremy Greiner LJ Topic#20953 2011 Feb 2

View JDJ's profile

JDJ

14 posts in 2047 days


#5 posted 05-26-2011 11:26 PM

The login should be HTTPS at least as that prevents people from sniffing your password. I agree it’s overkill to have HTTPS for actual browsing. It’s not a big deal though like Rory said. I just wanted to share my concerns as a new member.

Have your say...

You must be signed in to reply.

DISCLAIMER: Any posts on LJ are posted by individuals acting in their own right and do not necessarily reflect the views of LJ. LJ will not be held liable for the actions of any user.

Latest Projects | Latest Blog Entries | Latest Forum Topics

HomeRefurbers.com