[fweespee_ch]

I'm glad to see this post getting upvoted because I've had to argue with people repeatedly on HN who claim its private / a valid authentication factor.

Look folks, maybe as part of some second or third factor it might be okay...but you still need a password.

[derekp7]

Common security practices define authentication factors as: 1) Something only you know [password], 2) Something you have [hardware security token], and 3) something you are [fingerprint, iris scan, etc]. And you should need at least two of these to authenticate to a system.

[kobayashi]

People on HN have actually argued that "its private / a valid authentication factor"?

I'm rather surprised. To me, this seemed like a longstanding given (in this community).

[revscat]

> I'm glad to see this post getting upvoted because I've had to argue with people repeatedly on HN who claim its private / a valid authentication factor.

No, you didn't. There is nothing in your history regarding this subject, except for this post.

[USAnum1]

To give them the benefit of the doubt, it's possible they've made a new account (45 days old isn't too much tenure).

Heck, I've done it, since it's probably not the best to create a digital repository of all my opinions!

[dave2000]

I create a new account on every site I use roughly once a year. I've no interest in reputation and there's no way to gain from keeping one account going. I know I'm not alone in doing this.

[fweespee_ch]

Did you bother to read the posts where I offered old accounts and/or the fact I cycle through accounts?

https://news.ycombinator.com/item?id=11440951

https://news.ycombinator.com/item?id=11377425

I mean if you are going to accuse me of being a liar, you may want to at least check to see if I mentioned having other accounts first.

Also, you may want to consider the OP was posted in 2013 to HN and I've said publicly I've been around on and off since 2010.