I love most things Google. Gmail, Google Docs, Google Reader and most of the tools and services they’ve come out with (Wave and Buzz notable exceptions).
If someone hijacked my Google accounts, they’d have to take my belt and shoe laces. So I was eager to try their recently announced 2-step verification process. From the Gmail blog:
“…it requires the powerful combination of both something you know—your username and password—and something that only you should have—your phone. A hacker would need access to both of these factors to gain access to your account. If you like, you can always choose a “Remember verification for this computer for 30 days” option, and you won’t need to re-enter a code for another 30 days. You can also set up one-time application-specific passwords to sign in to your account from non-browser based applications that are designed to only ask for a password, and cannot prompt for the code.”
I’ll have a better feel for this in a few days but I’m willing to put up with a little extra hassle to know my account is safe.