Thursday, November 30, 2006

NewsGator: Why?

I was playing around with different news readers/aggregators when I remembered that I have an existing NewsGator account that I set up a while back. So I went to the NewsGator site and tried to login but I forgot my password. Like most sites, NewsGator has a "Forgot your password?" link. Using that function sent me this email:
To:[My Email Address here]
Subject: NewsGator Online credentials
Date: Thu, 30 Nov 2006 19:04:09 -0700
As you requested online, we are sending your NewsGator
Online credentials to you. They are as follows:

Username: [My Username was here]
Password: [My unencrypted password was here]

Customer Support
NewsGator Technologies


If this was a password reset or new account creation, that would have been acceptable -- as long as I am then required to change it the next time I log on. But what they sent me is a password that I created months ago.

This could only mean that in NewsGator's servers, my password is stored either in unencrypted format, or if it is encrypted, it is reversible. I know that a lot of smaller sites do this... but NewsGator? What happened to one-way encryption?

Comments? Good, bad, tolerable, unacceptable?

Still in setup mode

As of yesterday, my main blog was still at However, I was trying to revive this blog account because I was planning to move back here (long story that I will explain later). I was playing around with feedburner for my feed and to my surprise this morning, there are already people subscribed! Well... thanks! :)

So to you who have subscribed, please bear with me as I move my posts over. Because of you who subscribed, I am now making this the main blog as of today.

The blog will be decommissioned before December 15, 2006.