Y
Hacker News
new
|
ask
|
show
|
jobs
by
Cpoll
19 days ago
Some sites do this to prevent password recovery spam; you need to provide two pieces of information. Ideally not telling the client if they wrote the wrong email, that'd be a security issue of its own.