Skip to content
Better HN
Top
Best
Ask
Show
New
Jobs
Search
⌘K
0 points
6d0debc071
12y ago
0 comments
Save
Share
Would've been fairly easy to request the ID at the start and refuse to perform the operation if you didn't have a valid one. Heck, that seems the obvious way to do it - less to execute if they fail the ID check.
0 comments
1 comments · 1 top-level
top
newest
oldest
jbrooksuk
12y ago
True. There is definitely more Microsoft can do to resolve this, your solution being the
easiest
way to implement decent security.
j
/
k
navigate · click thread line to collapse
