Skip to content
Better HN
Top
New
Best
Ask
Show
Jobs
Search
⌘K
undefined | Better HN
0 points
choward
7y ago
0 comments
Share
Exactly. The only password that really matters is the one for your email. Everything else just provides additional attack vectors.
0 comments
default
newest
oldest
dogma1138
7y ago
That only works for services that do not store any sensitive data and employ costumer controller encryption, if your password is used as a cryptographic tool then it’s out of the question to use such mechanism.
choward
OP
7y ago
Then how would you be able to reset your password? All I'm saying is that any service that allows password resets shouldn't have passwords at all.
vxNsr
7y ago
Whatsapp has figured out a solution to this problem. i.e. what is your Whatsapp password?
PappaPatat
7y ago
Your telephone number. So instead of something you know (password), they use something you have (phone).
j
/
k
navigate · click thread line to collapse
