I think that this kind of approach can be interesting (if these passwords are stored properly by the service).
Another approach can be to set up a "trust device" (your phone usually) and any time, you want to login to the service with another device (your home computer for instance), you receive a notification on the trust device that will grant you access to the service from your "non-trusty" device, only for the session.
The trust device allow the user to revoke a session if the user wants it. you have total control.
That is pretty secure and very powerful.
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
I think that this kind of approach can be interesting (if these passwords are stored properly by the service).
Another approach can be to set up a "trust device" (your phone usually) and any time, you want to login to the service with another device (your home computer for instance), you receive a notification on the trust device that will grant you access to the service from your "non-trusty" device, only for the session.
The trust device allow the user to revoke a session if the user wants it. you have total control.
That is pretty secure and very powerful.