Lack of interest Validation on Password Reset

This suggestion has been closed automatically because it did not receive enough votes over an extended period of time. If you wish to see this, please search for an open suggestion and, if you don't find any, post a new one.
Robust

Robust

Well-known member
When a password reset is requested perhaps a security question, or some sort of question should be asked to narrow down the amount of password reset attempts.

This should be a core feature imho, as anyone can spam someone's email by sending password resets.
 
Upvote 1
This suggestion has been closed. Votes are no longer accepted.
Robust said:
When a password reset is requested perhaps a security question, or some sort of question should be asked to narrow down the amount of password reset attempts.

This should be a core feature imho, as anyone can spam someone's email by sending password resets.
Click to expand...
Fair wish.
Instead of "Name or Email" should be only "Email"
 

Similar threads

dougdirac
  • Question Question
XF 2.2 How to force a password reset on a large group of users?
Replies
17
Views
182
atreus
A
duderuud
  • Suggestion Suggestion
Lack of interest Change password reset messages
Replies
0
Views
313
duderuud
duderuud
alexm
  • Question Question
XF 2.2 Is there a way of getting users dates on the last password reset?
Replies
4
Views
739
digitalpoint
digitalpoint
K
  • Question Question
XF 2.2 Password reset emails not working with Microsoft hosted emails
Replies
6
Views
957
ENF
ENF
Seeker-Smith
  • Question Question
XF 2.2 Password reset / email verification
Replies
8
Views
878
Seeker-Smith
Seeker-Smith
Back
Top Bottom