> I support Derek's emphasis on security.
Even though not very well implemented, NetSol's 3 types of security is a
good idea.
Let's ask the customer, what sort of security he/she needs:
- plain (like now)
- enhanced (no plain text password via email)
- SSL/PGP/etc. password through RSP
- SSL/PGP/etc. password via OpenSRS
What about providing an IF to our users, where they can _see_ their
password(s) via SSL? Unfortunately the password has to be stored on _our_
servers then, but... it might work out. Some security fans might even use
the later scheme, but through an IF OpenSRS provides.
- Csongor
