Last modified: 2006-05-17 18:11:51 UTC
Hi, someone frequently requests a new password with my username, may you ask for
the e-mail address to confirm the request before generate a new password? The
function will be more secure and 'someone' can't mistake!
Thanks for your attention and good work to you
P.S. I apologize for my 'english', I hope you'll understand the problem!
If the concern is that the password is being lost, don't panic. Your current
password continues to work unless you sign in with the new one.
There's support in the code for a throttle on the action, although whether or
not it's able to be enabled live is another matter.