freitasm: But we should provide the option. I actually thought of implementing a two factor authentication earlier this year. Just thought was overkill for Geekzone.
However... Another thought: I have a hidden "feature" that sends me an email if someone tries to login using my user name. Never actually received a notification, until last night, when someone tried to login on Geekzone as "freitasm" from a Chinese IP address.
For the first feature check out the YubiKey from YubiCo. They are a really cool device, similar to the more expensive ones but with comparable security and a much lower price point. As for the last feature, that would be cool to have too. Facebook has this feature. also
freitasm: Lucky we don't store or show passwords in plain text, otherwise this would be another risk.