On 7 Jan 2008, at 23:42, Vlad Fratila wrote: [snip] > target audience = programmers. > (1) i want them to supply the password in the first step, really. > these kind of users don't make typing mistakes. And, even if they do, > I'll mail them their password in the follow-up email (in my oppinion, > that is required anyway, after any signup process). [snip]
If your target audience is developers than I can almost guarantee that they'll complain if you e-mail them their password because: a) e-mail is an insecure transport mechanism for passwords b) it shows that you're storing the password in plain text rather than a password hash, which means that evil folk who hack your database can find out the passwords for everybody Just so y'know :-) Adrian ________________________________________________________________ *Come to IxDA Interaction08 | Savannah* February 8-10, 2008 in Savannah, GA, USA Register today: http://interaction08.ixda.org/ ________________________________________________________________ Welcome to the Interaction Design Association (IxDA)! To post to this list ....... [EMAIL PROTECTED] Unsubscribe ................ http://www.ixda.org/unsubscribe List Guidelines ............ http://www.ixda.org/guidelines List Help .................. http://www.ixda.org/help
