Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
underwater
on June 14, 2011
|
parent
|
context
|
favorite
| on:
If you develop web apps, don't do this.
That's true but with reset password links you can force the user to do extra work, like enter a CAPTCHA or answer a secret question. That should prevent bots from scraping and compromising accounts on a large scale.
Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
