Results 1 to 4 of 4

Thread: New User Password is Emailed to User in plain text - bad practice

  1. October 31st, 2017 #1
    graemej
    graemej is offline
    Thread Starter
    graemej's Avatar
    Join Date
    Sep 2012
    Location
    United Kingdom
    Posts
    191
    Thanks
    13
    Thanked 15 Times in 13 Posts

    New User Password is Emailed to User in plain text - bad practice

    Hello,

    I have the following ticked under classipress settings:

    "Let the user create their own password vs a system generated one"


    When a new user registers they are emailed their password which is not safe and bad practice.

    How do we turn this vulnerability off?

    Many Thanks
    Reply With Quote Reply With Quote
  2. October 31st, 2017 #2
    ovidiubica
    ovidiubica is offline
    Moderator ovidiubica's Avatar
    Join Date
    Mar 2011
    Posts
    5,749
    Thanks
    240
    Thanked 1,062 Times in 1,000 Posts
    You must be an AppThemes customer and logged in to view this response. Join today!
    Reply With Quote Reply With Quote
  3. November 1st, 2017 #3
    graemej
    graemej is offline
    Thread Starter
    graemej's Avatar
    Join Date
    Sep 2012
    Location
    United Kingdom
    Posts
    191
    Thanks
    13
    Thanked 15 Times in 13 Posts
    You must be an AppThemes customer and logged in to view this response. Join today!
    Reply With Quote Reply With Quote
  4. November 2nd, 2017 #4
    ovidiubica
    ovidiubica is offline
    Moderator ovidiubica's Avatar
    Join Date
    Mar 2011
    Posts
    5,749
    Thanks
    240
    Thanked 1,062 Times in 1,000 Posts
    You must be an AppThemes customer and logged in to view this response. Join today!
    Reply With Quote Reply With Quote
« Contacting listing owner does not work | Which Security Plugin for Classipress ? »

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. How to login Anonymous User ? with user name Password ?
    By sreenubfa in forum Anonymous Posting for ClassiPress
    Replies: 0
    Last Post: March 2nd, 2015, 11:56 AM
  2. When using the Bank Transfer payment gateway, does the user not get emailed?
    By badmaash in forum ClassiPress General Discussion
    Replies: 1
    Last Post: February 13th, 2014, 07:27 PM
  3. Login Inconstancy: Allow user to select password versus email password to user
    By cloudybright in forum Help Using ClassiPress
    Replies: 5
    Last Post: August 8th, 2013, 01:21 PM
  4. Emailed Copy of User's job submission request showing jibberish instead of attachment
    By slmedia in forum Report JobRoller Bugs
    Replies: 13
    Last Post: March 8th, 2012, 06:44 AM