If you go to https://en.wikipedia.org/wiki/Special:Preferences, currently the only way to secure your account is email which can send an email if you want to reset your account.. We should increase the privacy/password reset options.
Potential reset methods:
- We could add support for security questions enabling users that have had there email changed to be able to control there account through security questions, Most sites do this which would add extra security to the users.
- Also we could add support for Two Factor Authentication using a phone number. The user should have to verify the number first before the number is used for anything on the account. When verified if the users wants to reset via phone then he or she can. They will get a code that they then enter in the form to unlock the account to change password.