Allow Change SIP Password
Allow Change SIP Password
For those of use who purchased the config file, I think it would be good to have an option to change the SIP password. It scares me a little that, if somebody finds out my password, they would have access to my account! I'm sure it's an easy fix from your end, but having the option is that extra level of comfort. (Of course, minimum password rules could apply!)
- FONGO_steve
- Site Moderator
- Posts: 2131
- Joined: 07/16/2009
- SIP Device Name: Grandstream 286 & 701
- ISP Name: Worldline.ca
- Computer OS: Windows 7 Ultimate / Mac OS X
- Router: TR1043ND w/ DD-WRT Mega
- Smartphone Model: Galaxy S3
- Android Version: 4.0.4
- Location: Cambridge
Re: Allow Change SIP Password
Thanks for the suggestion!
Right now our reasoning behind the random password is extra security - when most people are given the option to choose their own password you see a high amount of '123456' and 'password' being chosen, which is terribly insecure, especially for your personal phone line. If I had to guess, I'd say that one in every four people choose passwords that anyone could guess. If you ever believe your SIP password has been compromised, you can call into support and the agent can generate a new one.
Right now our reasoning behind the random password is extra security - when most people are given the option to choose their own password you see a high amount of '123456' and 'password' being chosen, which is terribly insecure, especially for your personal phone line. If I had to guess, I'd say that one in every four people choose passwords that anyone could guess. If you ever believe your SIP password has been compromised, you can call into support and the agent can generate a new one.
Steve
Fongo
Development Support Specialist.
Fongo
Development Support Specialist.
Re: Allow Change SIP Password
What's wrong with a password of "123456" or "password"???
Okay seriously, that's what I thought! Password rules can require minimum 6 characters, atleast 2 uppercase non-adjacent letters, 2 numbers, atleast 2 lowercase non-adjacent numbers or whatever else is necessary via regex. Or, a button to "request" password change (which would instantly automatically generate it).
Okay seriously, that's what I thought! Password rules can require minimum 6 characters, atleast 2 uppercase non-adjacent letters, 2 numbers, atleast 2 lowercase non-adjacent numbers or whatever else is necessary via regex. Or, a button to "request" password change (which would instantly automatically generate it).
- marginal
- Active Poster
- Posts: 134
- Joined: 04/17/2010
- SIP Device Name: Linksys PAP2-NA
- Firmware Version: 3.3.14
- ISP Name: Acanac
- Computer OS: Ubuntu / XP
- Location: Montreal, Canada
- Contact:
Re: Allow Change SIP Password
I don't mind a support agent reset my password, but why can't it be done through regular "lost password" and "reset password" procedures on your website through the email registered with the freephoneline service?
Thanks.
Thanks.
- bridonca
- Technical Support
- Posts: 1225
- Joined: 11/16/2009
- SIP Device Name: Netgear WGR615V
- Firmware Version: latest
- ISP Name: Eastlink
- Computer OS: XP
Re: Allow Change SIP Password
My first thought is what is someone hacked your account? You would not want some web interface to get at your SIP settings.marginal wrote:I don't mind a support agent reset my password, but why can't it be done through regular "lost password" and "reset password" procedures on your website through the email registered with the freephoneline service?
Thanks.
I think the main reason this is not implemented is that it takes effort and cost to set up a working web interface to change a password, and there is not much return or demand for this extra service.