Educause Security Discussion mailing list archives
Re: Email account management for alumni
From: Gary Flynn <flynngn () JMU EDU>
Date: Wed, 25 Jan 2006 22:39:35 -0500
Dave Koontz wrote:
Given the limited network access rights most students / alumni and other non administrative users have in our network, we opted to write our own Web Based Password Reset form for these users. It works similar to some high-dollar commerical software. We see this as farily minimal risk, since in our environment these user accounts do not have rights to any adminstrative software or critical services. Currently, our password reset form only asks for the students Username, college ID Number and the last 4 of their SSN. While there may be some opportunity for abuse, worse case scenerio is a hacker compromises an email account.
What about folks who want to make things like transcripts available online?
Current thread:
- Email account management for alumni Gary Flynn (Jan 25)
- <Possible follow-ups>
- Re: Email account management for alumni Dave Koontz (Jan 25)
- Re: Email account management for alumni Gary Flynn (Jan 25)
- Re: Email account management for alumni Geoff Nathan (Jan 26)
- Re: Email account management for alumni Dave Koontz (Jan 26)
- Re: Email account management for alumni Kevin Shalla (Jan 27)