>> Except when it's american based and I'm the securable... because they insist on silly questions which have no answer here, different culture.
>I think questions are stupid as well -- I was thinking more about two-factor stuff like sending a verification code to your phone when you access the site from a new workstation -- stuff like that.
I wish they had that. There's no cheap rate when sending to Serbia, so let them suffer the cost :).
>Even in America I have come across security question arrays where, even though they had 20-30 questions, I honestly could not answer any of them reliably enough to be the foundation of my access for that site. VERY annoying.
And in some cases effing close to information harvesting. But actually unreliable - in the above example I barely found two questions that I could trust myself to answer exactly the same a few weeks later.