Editorials

Asherons Call: What's This? A Serious Security Flaw in Passport?

Yes, I am just as surprised as the rest of you! Okay, since sarcasm doens't translate well to the written word, I'll just have to tell you that sarcasm was what I was going for there.

In this News.com article, they detail that you could get a password to someone's .NET Passport account reset and sent to any e-mail address. This could be why we've seen a rather large number of "hackings" among the Asheron's Call players of late. As of right now, the password reset function has been completely disabled until a fix is put into place.

[i]Thanks to Rho for posting this on our General Community forum.[/I]