Customer Login Password

Adam · Jan 06, 2008, 13:02:46

Has anybody found their password used to login to the IDNet customer area has been reset again? It has just happened to me for no apparent reason, and it has happened in the past.

Rik · Jan 06, 2008, 13:05:28

Ever since the launch of the new website, it periodically resets.

There's also a bug in the customer accounts page, but this seems not to affect everyone. If you login, go to usage and step through the three tabs, then go to Network Status, the system logs you out - but only the first time you try it. Others have been able to replicate this, but other others have not.

Adam · Jan 06, 2008, 13:08:45

Quote from: Rik on Jan 06, 2008, 13:05:28
Ever since the launch of the new website, it periodically resets.

I wonder if IDNet is working on fixing the issue or do they need to be made aware of the problem?

Quote from: Rik on Jan 06, 2008, 13:05:28
There's also a bug in the customer accounts page, but this seems not to affect everyone. If you login, go to usage and step through the three tabs, then go to Network Status, the system logs you out - but only the first time you try it. Others have been able to replicate this, but other others have not.

I've had this happen many a time, but I presumed it was being sorted due to the posts on the forum.

Rik · Jan 06, 2008, 13:11:21

Quote from: Adam on Jan 06, 2008, 13:08:45
I wonder if IDNet is working on fixing the issue or do they need to be made aware of the problem?

They're aware, though I suspect it's not a high priority for them - very few people seem to have changed their passwords.

QuoteI've had this happen many a time, but I presumed it was being sorted due to the posts on the forum.

Again, I suspect a low priority issue.

Adam · Jan 06, 2008, 13:15:23

Perhaps a little pushing is needed.

I'd see any login issues as high priority imho, and automatic logging out is something that should be pretty high on the list as well.

Rik · Jan 06, 2008, 13:16:46

You might want to raise it with Tim.

Adam · Jan 06, 2008, 13:18:40

It's worth a try.

Another thing I always wondered; why can't we change our broadband passwords?

Rik · Jan 06, 2008, 15:17:09

I can't think of a good reason. I do know from Martin that there were different systems for different purposes until the new website launched, so that may be the reason. OTOH, could it be to do with BT?

Adam · Jan 06, 2008, 16:06:12

Quote from: Rik on Jan 06, 2008, 15:17:09
I can't think of a good reason. I do know from Martin that there were different systems for different purposes until the new website launched, so that may be the reason. OTOH, could it be to do with BT?

I believe the authentication is done at the ISPs RADIUS server and changing passwords shouldn't involve BT. Perhaps accounts are set up manually and therefore password changes would simply increase the workload. I'll ask if it'd be possible to get the ability to change broadband passwords, but I'm not sure it'll return anything.

One other thing I've noticed is that email passwords are stored in plain text, otherwise it'd not be possible for IDNet to display the password in the customer area. I'd prefer if the passwords were stored as a hash and to stop displaying passwords.

Rik · Jan 06, 2008, 16:11:16

Quote from: Adam on Jan 06, 2008, 16:06:12
I'd prefer if the passwords were stored as a hash and to stop displaying passwords.

It would certainly be more secure. I suspect it's done the way it is because people forget their passwords...

Adam · Jan 06, 2008, 16:12:59

Quote from: Rik on Jan 06, 2008, 16:11:16
It would certainly be more secure. I suspect it's done the way it is because people forget their passwords...

While that may be the case, it's just as easy to change a password. $:-\$

Simon · Jan 06, 2008, 20:29:44

Quote from: Rik on Jan 06, 2008, 13:05:28
Others have been able to replicate this, but other others have not.

There's a lot of others around here!

Rik · Jan 07, 2008, 09:35:22

It was a bad day.