Skip to content
Better HN
Top
New
Best
Ask
Show
Jobs
Search
⌘K
undefined | Better HN
0 points
pavpanchekha
14y ago
0 comments
Share
The URLs are usually time-linked, one-time, and service-specific, as opposed to the password, which 1) is permanent, 2) can be used without the user knowing, and 3) is likely to be used on other services as well.
0 comments
default
newest
oldest
eru
14y ago
Also a legitimate user will notice when somebody resets their password, because their old password won't work any more.
j
/
k
navigate · click thread line to collapse
