It wouldn't help people who have old accounts with lost passwords, but I think it would be possible to make a secure enough way for accounts going forward.
I think we could just have the original email address get copied into a new table field upon registration that would be used only in relation to Login Server accounts. Then, allow people to log in with their forum account and then again with one of their LS accounts on that forum account to change that email address at any time. Since it requires the LS info to be able to change the email address, only people who have access to their forum and LS account could change it. Then just allow them to send a password reset email to the email address tied directly to their LS accounts. It would be a single email address tied to all LS accounts on the same forum account, but they can chose which LS account they want to have the password reset on. Then, as long as they still have access to that LS email account, they can complete the process.
That should resolve password issues going forward, but again it doesn't really fix any existing accounts. It would probably only be able to apply to newly registered forum accounts, or maybe only forum accounts past a certain date. I don't know of any secure way to make a system that is backwards compatible due to the security breaches of the database in the past, but that doesn't mean we can't resolve this issue for the years to come.
|