Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
I want to call “storing a password in plain text in a Database” a bad pratice… but our customer did this in his Application. They want me to renew that Application.
My point: I want to change this…but since it is not a need for our Customer it is still unclear.
How do you handle such issues regarding security? From my point of view it is difficult to explain such issues to Customers.
Write a short, clear and jargon-free formal letter stating your concerns and concluding that in your professional opinion, it should be rectified. Address it to someone reasonably high up in the customer.
If they then choose to ignore your advice, that’s their prerogative.
(Keep a copy of the letter yourself, too.)