----- Original Message ----- From: "Kai Schaetzl" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, October 22, 2003 12:31 PM Subject: Now, who came up with THIS ?
> > 1. User name only for sign-in for the Reseller Resource Center > > --------- > > > > Tucows is pleased to announce that we have streamlined access to the > > Reseller Resource Center (RRC). Effective immediately, > > Resellers can sign-in using their user name only. The password is no > > longer required. > > > > You can access the RRC at: > > http://rrc.tucows.com > > > > > What the heck is this supposed to be good for? It took me TWO guesses to > guess the username of a member of this list and get in. Username verified, > now up for brute-forcing the password ... > > Who's making such a kind of decision, an apprentice? > > If I remember right there was concern on this list about the http protocol > and possible password sniffing. Is this the answer? I can't believe it. I > may be exaggerating, but this is not a solution. What's so difficult > providing this via SSL? What's so difficult here that Tucows doesn't get > it right even after the second try? Took me three guesses. You've certainly got to wonder... Still, a nice looking site. Obviously Tucows has access to some half-way talented web designers (look & feel, anyway - nevermind the clueless "login" thing). Now, how about redesigning the absolutely horrid RWI from the ground up?
