I don't know what happened in this case, but it doesn't seem very difficult: 1. ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		jjwiseman on July 14, 2011 \| parent \| context \| favorite \| on: GoGrid-hosted server hacked between provisioning a... I don't know what happened in this case, but it doesn't seem very difficult: 1. Configure server to use password authentication and allow logins from anywhere. 2. Send password to user via unencrypted email. There's a reason that people are uncomfortable receiving passwords via email.

sanswork on July 14, 2011 [–]

1. Is true of GoGrid. 2. They don't you get the initial passwords from their admin panel.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact