| Author |
 Topic  |
|
|
Rasyr
Junior Member
USA
199 Posts |
 Posted - 16 August 2002 : 08:03:06
|
Okay, here is my question...
After I update to 3.4 and make it live, I am wanting to send an email to all of my registered users, asking them to please change their password. I am planning on doing this in order to make sure that they all have valid email addresses.
Will this work? If they change their password after I have upgraded to 3.4, will it make them go through the email validation process?
Also, is there a way for me to find out who has and hasn't done this?
At the moment I have over 450+ registered users, and I want to make sure that they all have valid email addresses in the DB?
If this will not work, does anybody else have any suggestions? |
**TANSTAAFL** |
|
|
Roland
Advanced Member
Netherlands
9335 Posts |
Posted - 16 August 2002 : 08:42:04
|
There are two ways to make sure they changed their passwords: have a confirmation email sent to you when they've changed their password. Or check the encrypted passwords in the database against a backup that you make right after upgrading the database.
Why would you have to validate your email address when you change your password? They're seperate things and not related to eachother. |
 |
|
|
Mr Pink
Junior Member
United Kingdom
387 Posts |
Posted - 16 August 2002 : 08:46:17
|
I performed a similar excercise a couple of months ago, I didn't email all my members though.
Here's a few suggestions.
If you email all members, you should get an error message or returned email for any that don't exist. These can then be locked for a while. Some members may have accidently spelt their address wrong and will probably contact you to say they can't login.
If you put in your email something like..."If you still want to be a member, please reply to this mail by <date>" I did this and kept a list so that I knew who hadn't replied.
OOPS
While I've been typing this, I had a thought for a mod or new feature for the future. How about an admin option that forces all members to change their passwords... this could be used in the case of a security breach.
|
Martin
Leyland Forum Leyland Lancashire UK |
Edited by - Mr Pink on 16 August 2002 08:50:07 |
|
|
|
Mr Pink
Junior Member
United Kingdom
387 Posts |
Posted - 16 August 2002 : 08:49:00
|
quote:
Originally posted by FrutZle
Why would you have to validate your email address when you change your password? They're seperate things and not related to eachother.
Oops... I thought it worked that way, or is it just when youi change you email address.. |
Martin
Leyland Forum Leyland Lancashire UK |
|
|
|
Rasyr
Junior Member
USA
199 Posts |
Posted - 16 August 2002 : 09:42:11
|
That is what I am trying to find out... I want to look for bogus addresses to weed them out.
Since I also run the email server that the outbound mail from the forums (subscription notices and such), I only find the bad email addresses if the person subscribes to a topic or other level of the forums.
I have 460 registered users right now, and a few more register each week. Right now I don't have email validation installed (and I decided to wait until 3.4 for it), but I want a method to check the emails....
I may just go with the "email every to respond or else" method (and remove those email addresses that I know for a fact to be good....)
I think that I may just go ahead and implement the email validation during the register process this week end so that once I have everybody validated, I won't have to worry about it any more..
Thanks for the input!!
|
**TANSTAAFL** |
|
|
|
ruirib
Snitz Forums Admin
Portugal
26364 Posts |
|
| |
Topic |
|
Topic Locked
