Forum software insequre password reset

When I needed to reset my password for this forum, I was emailed a new password. I was not required to enter a new password when I used this password to log in. This is very insecure and raises the question:

Are Linode's other services equally insecure?

1 Reply

Meh, it's just phpBB. They slapped it on forum.linode.com over 10 years ago and haven't bothered to replace it. Honestly, given the miserable state of free forum software nowadays, there probably isn't anything they could replace it with that is any less insecure.

The good news is that the forum is completely independent from the rest of Linode's infrastructure. So I just use a different password on the forum and call it a day. :mrgreen:

Reply

Please enter an answer
Tips:

You can mention users to notify them: @username

You can use Markdown to format your question. For more examples see the Markdown Cheatsheet.

> I’m a blockquote.

I’m a blockquote.

[I'm a link] (https://www.google.com)

I'm a link

**I am bold** I am bold

*I am italicized* I am italicized

Community Code of Conduct