Skip to main content
Skip to main navigation
Skip to talk navigation

Active discussions

Meet the Other Phone. Only the apps you allow.

Meet the Other Phone.
Only the apps you allow.

Please or to access all these features

Add post

Watch this thread

Save thread

Start a new thread

Flip thread

Hide thread

My feed

Active Unanswered threads

Getting started FAQ's

Unanswered threads Acronyms Talk guidelines

Hide shortcut buttons

Talk

Start new thread

Flip

Back to thread

Original poster

Login security

1 reply

asneakyone · 12/09/2015 22:31

MNHQ, I know you've tightened up your password rules since the recent security breach, but it strikes me that you're still vulnerable so long as you allow people to log in with their Usernames. These are easily harvestable in bulk from the talk pages, and hackers can simply run algorithms which try millions of relatively guessable passwords (simple combos of dictionary words, names, numbers and common patterns of capitalisation etc) against each one in turn.

If the option to use usernames was removed and we were forced to use our email addresses instead, then the site would be far more secure.

Go to post

MNHQ

RebeccaMumsnet · 14/09/2015 15:35

Hi asneakyone,

Thanks for the suggestion.

It's one of the security improvements we're considering and we'll inform the users ahead of time if/when we're going to make this change or any other changes that will directly change the way that you log into Mumsnet.

Watch this thread for updates

Tap "Watch" to get all the latest updates

End of posts

There are no more MNHQ posts on this thread

Back to thread

Flip

Get involved

Play today's Codeword

Play
Play today's Guessword

Play
Play today's Crossword

Play
Play today's Sudoku

Play
Play today's Numberfit

Play