Still seems far, far more likely that the average user will have their account s... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		giantfrog 5 months ago \| parent \| context \| favorite \| on: Emailing a one-time code is worse than passwords Still seems far, far more likely that the average user will have their account stolen via password theft/reuse than the more complicated scheme the author is describing. Links instead of codes also fixes the issue.

esseph 5 months ago [–]

Links are not trustworthy and can leak to compromise.

esseph 5 months ago | [–]

*lead, oops!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact