[Oblouk]

I do not see the benefit of this from a usability standpoint.

From a security standpoint it seems like an absolute nightmare. If you lose the password to your email you could lose access to all your accounts.

Most people do not own their own email server and so this could have catastrophic security consequences.

Of course the sites could check for IP location consistency but in order to spot security threats early you would need to track logins to multiple sites. The only way to do this would be to either give another third party company the ability to track logins and implement fail safes. At that point it begins to operate a lot like the companies which allow third party authentication through Facebook/Twitter/Email.

[penprog]

Considering that for most websites one can easily reset the password to your account if they have access to your email, this adds no extra security risk (for those situations which are most common websites eg. Amazon, facebook, twitter etc). So this is NOT catastrophic for security because the current situation is already like this.

For websites where security is a larger issue, this obviously wouldn't be the solution.