The login form is currently unprotected -- should post to an SSL-protected login form. Similarly, users should not receive passwords via email after signing up (or ever).
yes - *very* poor security practice, especially emailing passwords in the clear. 'Beta' is no excuse, security should come first.
It's a food website - why does it need to be secure? There's no financial or personal information gathered.
Many people use the same login info for multiple sites. I think it's poor netiquette to send passwords in plaintext.
Plus, there's always the chance of a malicious person posting under someone else's name. I would hate to be the one who's kicked off of Chowhound because a spammer started posting offensive or junk material using my name and password.
Yup, what he said.
Most Recommended Discussions on Site Talk
Dec 20, 2013
about 17 hours ago
Hounders are nice!
about 23 hours ago
I Received My First "Naughty...
20 minutes ago
Testing Thread Part 7
about 15 hours ago
about 20 hours ago
40 Impressive Birthday Cake Recipes
See All 41 Recipes »
Thanks for participating in this test. If you've provided your email, we'll get back to you as soon as we can.
About/Contact CHOW |
Posting Guidelines |
CBS Entertainment | About CBS Interactive | Jobs | Advertise