Today I asked myself: "And if I forget, or if someone changed the login password to your blog?". It may happen that, after a dictionary attack the Brute force un hacker POSSA penetrate my account, to change the address mail address of the administrator in order to have the notifications addressed to himself and change the password. In this way I would have no way to reset the password either by clicking on "You Lost your password", because the notification would be received by the hacker. So how is? Start by saying that for ways to reset the password there are several, all equally effective and reliable. Obviously, we have full control of the database on which we are going to operate. At different levels of "freedom" on the database there are different ways to interact with it. (more…)