True, but two-factor authentication would prevent even that. The odds of a child having access to their parents phone is much less than just simple password/username entry.
Which actually brings me to another point: Logins should expire. Right now, once you are logged in, you stay logged in forever. That cookie or certificate should be set to expire, say, once a month.
No, don’t support that.
Let’s just say I know of types of accounts requiring a login every 30 days or they become deactivated. It’s a PITA!
“ dare I say your comments appear authoritarian and fanciest.”
Well Laz…I think you’ve always been a fancy fellow. LOL
Agreed, that is a huge vulnerability. I'm lucky, if my daughter ever stumbled across this site and started posting for me, I think she's more rabidly conservative than I am.
Please not once a month
Please?
As we age, once a month is like the middle of last week!