With older Carerix applications, it was possible to exchange Candidate passwords in plain text. Handy for when a Candidate forgot his or her password again. But this method is insecure and not wanted.
Encrypt the passwords
For a while now it has been possible to make your Carerix application more secure by turning on this option in the settings. To turn this on you have to do the following.
- Go to 'Maintenance' | 'Settings'
- Go to the panel 'Encrypted password'
- Click the button [Activate] to activate this functionality
What does this mean for your application? From now on every new password for Candidates, Contacts and Users will be encrypted. And 5 new email templates will be installed.
NB: The older email templates which include CxScript to look up the unencrypted passwords will not be automatically deleted when activating the settings, an Administrator or a User that has rights to access the templates can do this.
To find template with this bit of CxScript it's best to filter in the email template overview on the following.
- Go to 'Maintenance' | 'Templates'
- Go to the 'Email-tab'
- Filter on "Code contains 'password'"
Now all the email templates that contain 'password' in the code will come up and you can remove this code from the old templates.
Read the article: Security & Privacy Check