Y
Hacker News
new
|
ask
|
show
|
jobs
by
choward
2898 days ago
Exactly. The only password that really matters is the one for your email. Everything else just provides additional attack vectors.
1 comments
dogma1138
2898 days ago
That only works for services that do not store any sensitive data and employ costumer controller encryption, if your password is used as a cryptographic tool then it’s out of the question to use such mechanism.
link
choward
2897 days ago
Then how would you be able to reset your password? All I'm saying is that any service that allows password resets shouldn't have passwords at all.
link
vxNsr
2897 days ago
Whatsapp has figured out a solution to this problem. i.e. what is your Whatsapp password?
link
PappaPatat
2895 days ago
Your telephone number. So instead of something you know (password), they use something you have (phone).
link