| Pages: [1] :: one page |
| Author |
Thread Statistics | Show CCP posts - 0 post(s) |
Ethaet
Gallente
Aliastra
   |
Posted - 2009.08.11 22:56:00 -
[1]
Edited by: Ethaet on 11/08/2009 22:57:04
Since so many people seem to be complaining about their account being compromised (or CCP are making it look that way), I suggest Chribba's account security suggestions found HERE be implemented.
--------------------------------------------------------------
Seriously, we need some kind of separation between the post and signature.
There you go. Now that wasn't so hard  |
Lothris Andastar
|
Posted - 2009.08.11 22:57:00 -
[2]
I agree with this product and/or Service!
|
Nika Dekaia
|
Posted - 2009.08.11 23:04:00 -
[3]
I'd prefer the (sorry to say: Blizzard) hardware solution (little key chain device to get an unique ID). So I can log in from wherever as lomg as I have the device (TM) and still have the needed security.
|
SentryRaven
KIA Corp
KIA Alliance
|
Posted - 2009.08.11 23:06:00 -
[4]
Locking an account to one or even two IP's does not work for everyone, since for example Germany uses 24h cycles and DHCP to assign IPs.... I have a new one every day... :D
--------
|
Viqer Fell
Minmatar
Maelstrom Crew
|
Posted - 2009.08.11 23:08:00 -
[5]
 Originally by: SentryRaven
Locking an account to one or even two IP's does not work for everyone, since for example Germany uses 24h cycles and DHCP to assign IPs.... I have a new one every day... :D
I am willing to sacrifice Germany for the sake of expediency 
|
Ethaet
Gallente
Aliastra
|
Posted - 2009.08.11 23:09:00 -
[6]
Originally by: Nika Dekaia
I'd prefer the (sorry to say: Blizzard) hardware solution (little key chain device to get an unique ID). So I can log in from wherever as lomg as I have the device (TM) and still have the needed security.
It works I guess, but I would guess requires a lot more development and costs (plus, does losing it make you unable to login? I don't play WoW so don't know exactly what you mean, but I guess it is like those card readers for online banking). A simple block on logging in from non specified IPs would be much easier to develop and implement with minimal/no extra cost.
--------------------------------------------------------------
Seriously, we need some kind of separation between the post and signature.
There you go. Now that wasn't so hard |
Ethaet
Gallente
Aliastra
|
Posted - 2009.08.11 23:12:00 -
[7]
Originally by: SentryRaven
Locking an account to one or even two IP's does not work for everyone, since for example Germany uses 24h cycles and DHCP to assign IPs.... I have a new one every day... :D
Your IP is still assigned from a relatively small range you can specify. It isn't perfect, but still a LOT more secure than allowing login from any IP.
--------------------------------------------------------------
Seriously, we need some kind of separation between the post and signature.
There you go. Now that wasn't so hard |
Guillame Herschel
Gallente
NME1
|
Posted - 2009.08.11 23:13:00 -
[8]
The suggested IP address lock would:
(a) not be as easy to implement as people think
(b) not be very effective at securing the account (because the mechanism for requesting a change to the IP addresses has to be open to all IP addresses)
(c) increase customer support workload for little or no benefit
Originally by: Sera Ryskin
And I have no idea what this bull**** about gang or solo is about.
|
F90OEX
F9X
Wildly Inappropriate.
|
Posted - 2009.08.11 23:19:00 -
[9]
Originally by: Guillame Herschel
The suggested IP address lock would:
(a) not be as easy to implement as people think
(b) not be very effective at securing the account (because the mechanism for requesting a change to the IP addresses has to be open to all IP addresses)
(c) increase customer support workload for little or no benefit
No question I would support it , but this guy above has some good points + I'm sure it would be only a matter of time before they find away around it.
Please resize your signature to the maximum allowed of 400 x 120 pixels. Zymurgist |
Cors
It's A Trap
|
Posted - 2009.08.12 00:11:00 -
[10]
you know, charging folks for a USB key that they can store the latest EVE client on AND that is a security key to their accounts COULD be a good idea.
Order them from CCP encoded for the account. Or maybe set it up with a SUPER API key of some sort. I don't know.. I'm not into that kinda stuff.
But a EVE dedicated Key WOULD be cool. Though, those of us with multiple accounts would go nuts from swapping keys from PC to PC as we log on/off char's...
|
Barbara Nichole
Cryogenic Consultancy
Black Sun Alliance
|
Posted - 2009.08.12 02:02:00 -
[11]
Quote:
you know, charging folks for a USB key that they can store the latest EVE client on AND that is a security key to their accounts COULD be a good idea.
I would never use one.. it would make logging into more than one account at the same time ridicules.
|
Lord Fitz
Project Amargosa
|
Posted - 2009.08.12 02:10:00 -
[12]
Lock has a few issues, log the data is already being stored (and it's trivial to do) it's just a matter of having some process to ensure that log is available to people, though realistically, it's probably too late by the time you notice someone doing it....
|
Messoroz
|
Posted - 2009.08.12 02:36:00 -
[13]
His first suggestion is decent and reasonable for normal security and making sure noone else is accessing. It won't prevent a isk seller from swooping in when your asleep however, but it could help. Heck even Google allows you to see all access activity(IP, browser, time) for gmail.
|
Sir Bonkers
|
Posted - 2009.08.12 03:53:00 -
[14]
Edited by: Sir Bonkers on 12/08/2009 03:53:20
Originally by: Ethaet
Originally by: Nika Dekaia
I'd prefer the (sorry to say: Blizzard) hardware solution (little key chain device to get an unique ID). So I can log in from wherever as lomg as I have the device (TM) and still have the needed security.
It works I guess, but I would guess requires a lot more development and costs (plus, does losing it make you unable to login? I don't play WoW so don't know exactly what you mean, but I guess it is like those card readers for online banking). A simple block on logging in from non specified IPs would be much easier to develop and implement with minimal/no extra cost.
I have to agree with the Blizzard solution. I have one for my WoW account and it works great. (Yes, I know... I play WoW and Eve...) My account password in WoW is literally 'password' because no one can log onto the account no matter what without the 6 digit number that my keychain gives. My account password has been password for almost a year with no problems. Granted, I do not click on weird links or give out my account name.
And yes, if I would loose my keychain thing, I would not be able to log into WoW or the WoW Account Management page without first contacting Blizzard and proving who I am.
BTW, I would gladly pay a smallish amount of cash for a hardware solution for my Eve account security. However, this would have to be VOLUNTARY for fellow pod pilots.
|
Bordelmutter
|
Posted - 2009.08.13 10:34:00 -
[15]
Originally by: Sir Bonkers
Edited by: Sir Bonkers on 12/08/2009 03:53:20
Originally by: Ethaet
Originally by: Nika Dekaia
I'd prefer the (sorry to say: Blizzard) hardware solution (little key chain device to get an unique ID). So I can log in from wherever as lomg as I have the device (TM) and still have the needed security.
It works I guess, but I would guess requires a lot more development and costs (plus, does losing it make you unable to login? I don't play WoW so don't know exactly what you mean, but I guess it is like those card readers for online banking). A simple block on logging in from non specified IPs would be much easier to develop and implement with minimal/no extra cost.
I have to agree with the Blizzard solution. I have one for my WoW account and it works great. (Yes, I know... I play WoW and Eve...) My account password in WoW is literally 'password' because no one can log onto the account no matter what without the 6 digit number that my keychain gives. My account password has been password for almost a year with no problems. Granted, I do not click on weird links or give out my account name.
And yes, if I would loose my keychain thing, I would not be able to log into WoW or the WoW Account Management page without first contacting Blizzard and proving who I am.
BTW, I would gladly pay a smallish amount of cash for a hardware solution for my Eve account security. However, this would have to be VOLUNTARY for fellow pod pilots.
I would fully support such an option. Since i have previously played WoW, i also decided to buy one of those keychain (random readers).
It's cheap, costs around 6Ç to buy, and can be used on as many accounts as you see fit, by just linking the ID of the keychain to each individual account. Aka ONE keychain for all your accounts.
Was used at my place for two accounts, worked like a charm.
Coming from a person who spent 4 years in that game, never changed my password and never ever got my accounts compromised. Yet the added security is well worth the tiny investment. |
Sagitaruis
|
Posted - 2009.08.13 12:57:00 -
[16]
I use one of the "encryption keys" daily for my work and have to say they are an excellent product.
Imo it would not be a "huge" undertaking by CCP to implement such a system. and also would be one that would provide ccp with a return on investment if you charged customers for the key generators (ala blizzard and other companies) it would also reduce the amount of time moderators spend locking down "ZOMG my account got hacked" threads, and will reduce the amount of time GM's and all parties involved in "investigation" of alleged security comprimises, this will also have a cost reduction associated with it (from a man hours perspective).
From a customer point of view it would give us a better feeling that we are slightly safer.
|
Sade Onyx
|
Posted - 2009.08.13 13:15:00 -
[17]
What and have CCP admit that persons not under their employ are better?... 
|
Washell Olivaw
|
Posted - 2009.08.13 13:22:00 -
[18]
Just a point to ponder: if 10% of WOW users order a key, blizzard can negotiate a hefty discount at the supplier.
If 50% of EVE players orders a key, the order is still 950,000 units smaller. CCP may not be able to get this done at a Ç6 price point. But if they can (get close), it's certainly worth the investment.
Originally by: Signature
Everybody has a photographic memory, some people just don't have film.
|
Discova
Interstellar Corp Exhumers
|
Posted - 2009.08.13 14:35:00 -
[19]
Originally by: Viqer Fell
Originally by: SentryRaven
Locking an account to one or even two IP's does not work for everyone, since for example Germany uses 24h cycles and DHCP to assign IPs.... I have a new one every day... :D
I am willing to sacrifice Germany for the sake of expediency
This post is full of win!
|
T'ealk O'Neil
|
Posted - 2009.08.13 14:42:00 -
[20]
The question is: why do ccp allow unlimited login attempts?
Surely the simplist way of combating these problems would be to limit the number of logins to say 5 (although I personally think 3 is more than enough) and once they have been used up the account is locked. An email is sent to the account user with an unlock code and option to reset their password (as if it was them then they have obviously forgotten it).
Then you also have password and email address changes emailed to the original account email address with a link it that allows the action to be reversed, so that if someone did steal your account and changed the email and/or password you can get it back without CCP having to do any work (other than perhaps a petiton for any lost assets).
Simples!
|
Hoo Is
|
Posted - 2009.08.13 14:46:00 -
[21]
Originally by: Barbara Nichole
Quote:
you know, charging folks for a USB key that they can store the latest EVE client on AND that is a security key to their accounts COULD be a good idea.
I would never use one.. it would make logging into more than one account at the same time ridicules.
Then stop metagmaing and use only one account...
One of the M's in MMO does stand for Multi-player, it's it's not refer to you and your alter ego
----
a reply which adds nothing to a thread or results in a thread being bumped with no new discussion worthy content is considered spam and as such warrants a forum ban |
Amerilia
|
Posted - 2009.08.13 15:19:00 -
[22]
A cool looking (EVE) key chain which makes my account(s) secure would be worth, say 30 € to me.
|
Ghoest
|
Posted - 2009.08.13 15:22:00 -
[23]
You will end up losing most DSL customers.
Wherever you went - Here you are.
|
stoicfaux
|
Posted - 2009.08.13 15:56:00 -
[24]
Edited by: stoicfaux on 13/08/2009 15:56:11
Originally by: Hoo Is
Then stop metagmaing and use only one account...
One of the M's in MMO does stand for Multi-player, it's it's not refer to you and your alter ego
If CCP were in the US, if such a rule were implemented, a person suffering from Multiple Personality Disorder could potentially sue under the Americans with Disabilities Act. Does CCP's home country have any equivalent legislation?
|
Unity Love
Caldari
Dissonance Corp
Libertas Fidelitas
|
Posted - 2009.08.13 16:17:00 -
[25]
Originally by: stoicfaux
Edited by: stoicfaux on 13/08/2009 15:56:11
Originally by: Hoo Is
Then stop metagmaing and use only one account...
One of the M's in MMO does stand for Multi-player, it's it's not refer to you and your alter ego
If CCP were in the US, if such a rule were implemented, a person suffering from Multiple Personality Disorder could potentially sue under the Americans with Disabilities Act. Does CCP's home country have any equivalent legislation?
Thats stupid and not true...
On another note I couldnt care less what security implements are put in place, probably not going to affect me as I'm not technologically challenged to the degree where my account will get hacked.
In all honesty I can't imagine that many accounts get hacked. It's just when they do they decide to whine on the forums because as said above they are technologically challenged.
So basically I don't really want something implemented which would be an annoyance to me and only benefit a select few.
|
Rashmika Clavain
Gallente
Shadows Of The Federation
|
Posted - 2009.08.13 16:36:00 -
[26]
It would be awesoem if CCP could offer it as an option...
I'd happily sign my game account up to some sort of IP filtering service
Removed. Please keep your EVE signature related to your EVE persona and not that of a real life politician. Navigator |
Angel Lightbringer
Caldari
Nexus Shipyards
|
Posted - 2009.08.13 16:54:00 -
[27]
I posted in the same kind topic there some weeks ago.
I do agree to this. 
-Angel |
Sir Bonkers
|
Posted - 2009.08.13 16:58:00 -
[28]
For what it is worth, the Blizzard solution is also available as a software download on a lot of mobile phones. Looks to be mainly smart phones though like the iPhone, Blackberry and Windows mobile. Account security would be worth $30 to me tbh for the hardware keychain. I am just not sure what kind of hardware CCP would have to implement to make this keychain work on their end.
|
Another Forum'Alt
Gallente
Center for Advanced Studies
|
Posted - 2009.08.13 17:06:00 -
[29]
This should definitely be added. It would save CCP so much time and money too.
BECAUSE OF FALCON.
Guide to forum posting |
| |
|
| Pages: [1] :: one page |
| First page | Previous page | Next page | Last page |