You know how Facebook sends you an email with the IP address, computer type and browser, and rough geographical area when you log in from a new computer or browser? If they send you all that on a successful new login, why don't they send you at least some of that information when someone submits a “reset my password” request for your account?
I mean, it's nice that they offer the “no, it wasn't me” link, though I doubt they do anything with it (and I'm reluctant to click on it anyway for fear of phishing), but I'd like to know if I'm dealing with one person who frequently types my username by mistake and thinks he's forgotten his password when he can't get in, or several.