Page 1 of 2 12 LastLast
Results 1 to 10 of 14

Thread: New Password Reset on Neopets

  1. #1


    esperanto's Avatar
    Join Date
    Apr 2012
    Gender
    Posts
    1,051
    Thanks
    510
    Thanked 742 Times in 409 Posts


    Downloads
    23
    Uploads
    0
    Mentioned
    368 Post(s)
    Time Online
    23 d 14 h 15 m
    Avg. Time Online
    18 m
    Rep Power
    8

    New Password Reset on Neopets

    Copied from JellyNeo.

    If you read New Features on Thursday, you would have noticed that Neopets is releasing a new password reset feature, and we're happy to announce that the feature is active! We thought we'd explain the new feature a bit and the security benefits that comes with it.

    First off, we'd like to applaud Neopets on releasing this new way of resetting passwords. It's much, much more secure than the old system and has quite a few modern security features.

    New Flow:
    To start off, to reset your password, you can click the "Forgot password?" link on the login box on Neopets.com.
    You must provide your Neopets username to make sure it exists, and if it does, then you must enter a CAPTCHA to confirm you'd like a change.
    You then receive an email with a special, unique link to reset your password. You also have the option to click a second link that cancels the reset and voids the link.
    When you click on the link to reset, you are asked for your username.
    After confirming your username, you are then asked for a new password.
    A successful reset will get you a second email in your inbox letting you know a change was made.

    Security Benefits:
    The best improvement here is that your password is no longer sent via email! Email is not very secure at all, and can be easily intercepted on its way from Neopets.com to your inbox. Sending your raw password was honestly a pretty terrible system, and we're delighted Neopets has changed it.
    Another benefit of not being sent your old password is that a hacker will never know what it was in the first place, which can be helpful if you use the same password on multiple websites. (Which is a BIG NO-NO.)
    When requesting a new password, you're also asked for a CAPTCHA, which should reduce the number of bots sending password requests.
    When you click the link to reset your password, asking to confirm your username is a great extra step to prevent scammers from trying to guess random password reset URLs.
    You also have the option of canceling a request to prevent others from using your password reset URL.
    There are probably a few other things we're missing too.

  2. The Following User Says Thank You to esperanto For This Useful Post:

    DarkAngel (01-06-2013)

  3. #2

    Mod's Avatar
    Join Date
    Nov 2012
    Gender
    Location
    Canada
    Posts
    2,821
    Thanks
    1,563
    Thanked 4,711 Times in 2,504 Posts


    Downloads
    0
    Uploads
    0
    Mentioned
    1365 Post(s)
    Time Online
    131 d 12 h 4 m
    Avg. Time Online
    1 h 43 m
    Rep Power
    11
    Is this actually active?

    Last night I forgot the pw to one of my accounts, so I entered in email and they still sent me back my old pw with my username.

  4. #3
    Moderator





    Bettser's Avatar
    Join Date
    Feb 2012
    Gender
    Location
    Canada
    Age
    26
    Posts
    5,865
    Thanks
    1,697
    Thanked 3,492 Times in 1,598 Posts


    Downloads
    41
    Uploads
    0
    Mentioned
    1387 Post(s)
    Time Online
    351 d 18 h 10 m
    Avg. Time Online
    4 h 29 m
    Rep Power
    10
    This is a very, very sad day for a lot of users on here and past programs

  5. The Following User Says Thank You to Bettser For This Useful Post:

    sharingan (01-06-2013)

  6. #4


    esperanto's Avatar
    Join Date
    Apr 2012
    Gender
    Posts
    1,051
    Thanks
    510
    Thanked 742 Times in 409 Posts


    Downloads
    23
    Uploads
    0
    Mentioned
    368 Post(s)
    Time Online
    23 d 14 h 15 m
    Avg. Time Online
    18 m
    Rep Power
    8
    Quote Originally Posted by Mod View Post
    Is this actually active?

    Last night I forgot the pw to one of my accounts, so I entered in email and they still sent me back my old pw with my username.
    JellyNeo confirms it is.

  7. #5

    nayfeee's Avatar
    Join Date
    Mar 2012
    Gender
    Location
    Manchester, England
    Posts
    1,620
    Thanks
    862
    Thanked 742 Times in 449 Posts


    Downloads
    26
    Uploads
    0
    Mentioned
    313 Post(s)
    Time Online
    86 d 1 h 38 m
    Avg. Time Online
    1 h 5 m
    Rep Power
    8
    I saw some changes had been implemented earlier today when checking a couple accounts.

  8. #6

    Join Date
    Nov 2012
    Gender
    Posts
    177
    Thanks
    21
    Thanked 65 Times in 48 Posts


    Downloads
    23
    Uploads
    0
    Mentioned
    15 Post(s)
    Time Online
    23 d 14 h 2 m
    Avg. Time Online
    18 m
    Rep Power
    6
    it just mskes an extra step just have to get the username from here http://www.petpetpark.com/login/retrieve/username

  9. #7

    nayfeee's Avatar
    Join Date
    Mar 2012
    Gender
    Location
    Manchester, England
    Posts
    1,620
    Thanks
    862
    Thanked 742 Times in 449 Posts


    Downloads
    26
    Uploads
    0
    Mentioned
    313 Post(s)
    Time Online
    86 d 1 h 38 m
    Avg. Time Online
    1 h 5 m
    Rep Power
    8
    Quote Originally Posted by __darkmaster View Post
    it just mskes an extra step just have to get the username from here http://www.petpetpark.com/login/retrieve/username
    You can still request the username here:

    http://www.neopets.com/login/index.phtml

  10. #8

    Join Date
    Nov 2012
    Gender
    Posts
    177
    Thanks
    21
    Thanked 65 Times in 48 Posts


    Downloads
    23
    Uploads
    0
    Mentioned
    15 Post(s)
    Time Online
    23 d 14 h 2 m
    Avg. Time Online
    18 m
    Rep Power
    6
    yah im guessing that will be patched soon as they relize its still there lol.. mayb they will patch petpet as well i guess

  11. #9


    tchaikovsky's Avatar
    Join Date
    Aug 2012
    Gender
    Posts
    691
    Thanks
    84
    Thanked 196 Times in 120 Posts


    Downloads
    17
    Uploads
    0
    Mentioned
    61 Post(s)
    Time Online
    8 d 17 h 46 m
    Avg. Time Online
    6 m
    Rep Power
    7
    Yup, it will. I'm fairly sure they're implementing this for the sole reason of doing away with most of inactive account farming abilities, and that means full usage of the new system.

  12. #10

    Join Date
    Nov 2012
    Gender
    Posts
    177
    Thanks
    21
    Thanked 65 Times in 48 Posts


    Downloads
    23
    Uploads
    0
    Mentioned
    15 Post(s)
    Time Online
    23 d 14 h 2 m
    Avg. Time Online
    18 m
    Rep Power
    6
    ah well ill just go back to my multi flps.. worked wonders b4 and now ill have more of a market for my shells

Page 1 of 2 12 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •