> console / rescue VM.
>
> Unfortunately they had also at some point in the past disabled
> email password reset, so they were unable to regain access.
My e-mail is hosted on my VPS so if it's down then the e-mail password
reset function would be no good to me anyway.
Of course, that's not your fault so I make sure that I don't forget my
access credentials. If, for whatever reason, that doesn't work out I woul=
d
be happy for you ask questions about personal details you hold about me i=
n
order to verify my identity.
I suppose the issue with this approach is that currently you might not
hold all that much info, and that that info might be easily discoverable
by a third party (e.g. address) so perhaps the control panel could allow
users to enter a question and answer that only they could know? I'm
thinking along the lines of 'What make was your first computer' type of
thing but this bit is key: let the user decide the question so they can
make it as secure (private/obscure) as they like as some of the stock
questions often asked are usually quite weak (e.g. mother's maiden name).
For what it's worth, I'm not keen on the methods suggested that could tak=
e
time to complete and carry other restrictions e.g. coded bank payments,
Skype calls, scanned utility bills etc and would prefer following the KIS=
S
principle as much as possible.
Regards,
Mathew
From wiggly@??? Sun Jul 08 12:02:00 2012
Received: from [2001:ba8:1f1:f03f:216:4eff:fe05:ae0f] (helo=otter.wiggly.org)
by mail.bitfolk.com with esmtps (TLS1.0:RSA_AES_256_CBC_SHA1:32)
(Exim 4.72) (envelope-from <wiggly@???>) id 1SnqBb-0005yd-Pq
for users@???; Sun, 08 Jul 2012 12:01:59 +0000
Received: from 78-105-5-64.zone3.bethere.co.uk ([78.105.5.64]:39671)
by otter.wiggly.org with esmtpsa (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32)
(Exim 4.72) (envelope-from <wiggly@???>) id 1SnqBa-00058u-OE
for users@???; Sun, 08 Jul 2012 13:01:58 +0100
Message-ID: <4FF976B6.8090509@???>
Date: Sun, 08 Jul 2012 13:01:58 +0100
From: Nigel Rantor <wiggly@???>
User-Agent: Mozilla/5.0 (X11; Linux x86_64;
rv:13.0) Gecko/20120615 Thunderbird/13.0.1
MIME-Version: 1.0
To: users@???
References: <20120707130537.GA11695@???>
In-Reply-To: <20120707130537.GA11695@???>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-Spam_score: -1.0
X-Spam_score_int: -9
X-Spam_bar: -
X-bitfolk.com-Metrics-Host-Lookup-Failed: Reverse DNS lookup failed for
2001:ba8:1f1:f03f:216:4eff:fe05:ae0f (failed)
X-Virus-Scanner: Scanned by ClamAV on mail.bitfolk.com at Sun,
08 Jul 2012 12:01:59 +0000
X-SA-Exim-Connect-IP: 2001:ba8:1f1:f03f:216:4eff:fe05:ae0f
X-SA-Exim-Mail-From: wiggly@???
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on
spamd2.lon.bitfolk.com
X-Spam-Level:
X-Spam-ASN:
X-Spam-Status: No, score=-1.0 required=5.0 tests=ALL_TRUSTED,SHORTCIRCUIT
shortcircuit=ham autolearn=disabled version=3.3.1
X-Spam-Report: * -0.0 SHORTCIRCUIT Not all rules were run,
due to a shortcircuited rule
* -1.0 ALL_TRUSTED Passed through trusted hosts only via SMTP
X-SA-Exim-Version: 4.2.1 (built Mon, 22 Mar 2010 06:51:10 +0000)
X-SA-Exim-Scanned: Yes (o
