Security questions as password reset method?

3

What is everyone’s thoughts and opinions on security questions being used as a password re method, especially with a local account in Windows 10 IP Build 17063?

Comments (3)

3 responses to “Security questions as password reset method?”

  1. Alexander Rothacker

    As long as the answers aren't true ;). And you don't provide the same answers twice to different sites.

    Everybody can find out peoples mothers maiden names, the high school they went too, and the make of their first car. It's pretty much public information. People answer this in silly Facebook threads, quizzes, or you can find it on all kinds of people finder sites.


    So the proper way to treat those answers, is to treat them like secure passwords. I store them in the Notes in my LastPass.


    It's really the wrong way to implement this, but hey, we've used passwords for way to long, too.

  2. Patrick3D

    I prefer the Linux method of setting an administrator password for handling such tasks rather than place the burden on an end user.

  3. xperiencewindows

    Give fake answers to your security questions. Or set the answer for mothers maiden name as 'Lakewood High School'.

Leave a Reply