It's addressed in the article. It's a valid concern, but they explain their deci... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		adnrw on May 17, 2013 \| parent \| context \| favorite \| on: Social login buttons aren't worth it It's addressed in the article. It's a valid concern, but they explain their decision - their "forgotten username" screen is a pretty simple way to check whether a username exists or not, so it's almost a moot point as far as security is concerned.

skeletonjelly on May 17, 2013 [–]

True, but then that triggers an email alerting the legit user of an attempt, rather than silence.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact