**Phil Rosenberg-Watt** @philrw@watt.ws · 2021-01-11T20:42:46Z

Phil Rosenberg-Watt @philrw@watt.ws

I had to manually encode the recipient delimiter "+" to "%2B" in a password reset email link because my hunch was the server didn't know how to parse it correctly. I was right. Sigh.

Jan 11, 2021, 20:42 · · Web · · ·

**Jonn** @jonn@social.doma.dev · Jan 11, 2021, 20:50

**Jonn** @jonn@social.doma.dev · Jan 11, 2021, 20:50

Jan 11, 2021, 20:50

Jonn @jonn@social.doma.dev

@philrw which service?

**Phil Rosenberg-Watt** @philrw@watt.ws · Jan 11, 2021, 20:59

**Phil Rosenberg-Watt** @philrw@watt.ws · Jan 11, 2021, 20:59

Jan 11, 2021, 20:59

Phil Rosenberg-Watt @philrw@watt.ws

@jonn A retail chain chicken sandwich food establishment. Don't know what they use on the backend.

**Jonn** @jonn@social.doma.dev · Jan 11, 2021, 21:01

**Jonn** @jonn@social.doma.dev · Jan 11, 2021, 21:01

Jan 11, 2021, 21:01

Jonn @jonn@social.doma.dev

@philrw got it! Probably worth telling them that they can ask FOSS community for help to make sure that everything is secure.

Glitches and security issues come hand in hand, as #ctf competitions (and real life) teach us.

**Phil Rosenberg-Watt** @philrw@watt.ws · Jan 11, 2021, 21:05

**Phil Rosenberg-Watt** @philrw@watt.ws · Jan 11, 2021, 21:05

Jan 11, 2021, 21:05

Phil Rosenberg-Watt @philrw@watt.ws

@jonn Yeah, I tried to use their website contact form and it's broken, too. Double sigh.

Resources

Developers

What is Mastodon?

watt.ws

More…