Thanks for the info on this.

I was actually thinking of changing the way the security works so as to have a code in an email that is sent that you type into the site, rather than a link that you have to click on.

This would work for creating an account and resetting passwords, as well as two-factor authentication for site administrators. (to prove that you are who you say you are before you administer your site!)

There are a few advantages to this - it means that the device you read your email on doesn't need to be the same as the one you're logging in with, and means that you don't lose the 'flow' of what you're doing (e.g., if you're in the middle of applying for a site and you end up having to click the link to confirm your account).

Security can never be overrated, I think, and adding two-factor authentication would be a big improvement to the security of Voice sites. At the moment probably the biggest risk of any data leak is site administrators with guessable passwords.

(there is a password security policy as I'm sure you're aware, but that doesn't necessarily mean that all administrators have chosen really good unique passwords!)

What do you (or anyone else) think about this? Would two-factor authentication be a welcome addition?

Thanks

Joe

I to think this will be a good addition to the security on the site.

Thanks

Mike