Hey There,

I am working on an auth system that I intend to use throughout several websites I am working on, they will all use the same userbase.

I am curious what your thoughts as a user on the following things:
  • Forgotten Password Security Question
  • Activation Email


As a user they both make me semi-annoyed having to do more work just to get the content and discourages me from using the website. However from a developer standpoint I like them better for security features. What are you thoughts on them and should I implement them into my system?

Thanks,
Randy