dadamssg Posted May 27, 2009 Share Posted May 27, 2009 if i've md5'd my users passwords, whats the best way or good ways to design a 'forgot your password' script? i haven't made them into a secret word in or anything, all i have is their username, password, and email as far as the info they have given me. anyways....having some options would be great! Link to comment https://forums.phpfreaks.com/topic/159842-forgot-password-design/ Share on other sites More sharing options...
Daniel0 Posted May 27, 2009 Share Posted May 27, 2009 Generate a random password and send it to the user. Link to comment https://forums.phpfreaks.com/topic/159842-forgot-password-design/#findComment-843039 Share on other sites More sharing options...
waynew Posted May 28, 2009 Share Posted May 28, 2009 I've seen the reset feature being abused quiet a lot on user websites. What I usually do is: Send email asking them to follow link to change password. User follows link and confirms that they want to reset their password. User enters new password. Update db. Link to comment https://forums.phpfreaks.com/topic/159842-forgot-password-design/#findComment-844545 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.