Lack of interest Validation on Password Reset

This suggestion has been closed automatically because it did not receive enough votes over an extended period of time. If you wish to see this, please search for an open suggestion and, if you don't find any, post a new one.
Robust

Robust

Well-known member
When a password reset is requested perhaps a security question, or some sort of question should be asked to narrow down the amount of password reset attempts.

This should be a core feature imho, as anyone can spam someone's email by sending password resets.
 
Upvote 1
This suggestion has been closed. Votes are no longer accepted.
Robust said:
When a password reset is requested perhaps a security question, or some sort of question should be asked to narrow down the amount of password reset attempts.

This should be a core feature imho, as anyone can spam someone's email by sending password resets.
Click to expand...
Fair wish.
Instead of "Name or Email" should be only "Email"
 

Similar threads

K
  • Suggestion Suggestion
Security Lock: User must contact Admin
2
Replies
23
Views
3K
Mr Lucky
Mr Lucky
Seeker-Smith
  • Question Question
XF 2.2 Password reset / email verification
Replies
8
Views
857
Seeker-Smith
Seeker-Smith
webbouk
  • Question Question
Member account hacked
Replies
3
Views
1K
Wildcat Media
Wildcat Media
Stuart Wright
  • Suggestion Suggestion
Security lock (password reset) in user criteria for notices and elsewhere
Replies
5
Views
1K
woody
woody
Vercingetorix
Activity Summary emails are the digital equivalent of junk mail.
Replies
3
Views
1K
Vercingetorix
Vercingetorix
Top Bottom