contestada

If you forget your password for a website and you click [Forgot my password], sometimes the company sends you a new password by email, but sometimes it sends you your old password by email. Which is a better method from a security perspective and why

Respuesta :

sandlee09

Answer:

new password by email

Explanation:

The better method would be sending a new password by email. This is because, most user tend to use repeated passwords for the vast majority of their online accounts. Therefore, sending their old password can cause problems if someone else has access to the user's email and discovers their old password. They may then be able to use this password to access various other accounts that the user possess. The best option would be to send the user a temporary new password and force the user to change the password once they regain access into their account.

Otras preguntas