WebApp Sec mailing list archives

Re: Forgot Your Password Best Practices

From: "Sverre H. Huseby" <shh () thathost com>
Date: Fri, 30 May 2003 14:34:47 +0200

[Susan Olson]

|   Does anyone know where I can find some ?best practices?and or know
|   of some Dos and Don'ts for implementing a ?Forgot Your Password ?
|   function for a web site?  I?ve been lookin for a couple of days
|   and have not turned up much.

  "Password Recovery" by Charles Miller
  http://fishbowl.pastiche.org/archives/docs/PasswordRecovery.pdf

If I remember correctly, this document started as a summary of a
discussion on this mailing list.


Sverre.

-- 
shh () thathost com
http://shh.thathost.com/

Current thread:

Forgot Your Password Best Practices Susan Olson (May 29)
- RE: Forgot Your Password Best Practices Richard M. Smith (May 29)
- Re: Forgot Your Password Best Practices Sverre H. Huseby (Jun 01)
- Re: Forgot Your Password Best Practices M. Burnett (Jun 01)