EVE Search - [Proposal] Provide services to improve account security

All Channels

Assembly Hall

[Proposal] Provide services to improve account security

» Click here to find additional results for this topic using Google

Monitor this thread via RSS [?]

Author

Thread Statistics | Show CCP posts - 0 post(s)

PaulTheWise

Posted - 2010.01.12 13:06:00 - [1]

Edited by: PaulTheWise on 12/01/2010 13:07:15

Originally by: Vaal Erit
Oh god not this again.

1) If you want to throw your money away on a useless authenticator then fine, but it will not make it impossible for your account to be stolen if you download harmful software. In reality you are just scared of third hand reports of people getting "hacked" and want a magic device instead of using common sense and basic security precautionary measures. Again, if you are paranoid to buy an authenticator then you are paranoid enough to not download strange programs or use password1 as your password.

Yeah, like EFT or EVEmon... I'm sure there are quite a lot of hacked installers out there, if you don't download them from the original location. And some websites are darn good at disguising they aren't actually the real thing.

Quote:
2) I don't think you know how IP addresses work. Insanely bad idea.

Oh, I'd love to see the option to lock logging in down to a fixed set of IPs, with a separate password for the webpage that lets me manage those. I think the OP has his IP-addresses about right, if you think he is (and I am) in error, please explain instead of just troll.

Quote:
3) I don't think you know what hacking is. Hackers don't "peek" at your account. I don't see what you can possibly do with the information. CCP on the other hand can do something with the information, not you. You are a user not an administrator, there is a world of difference between the two.

True, most hackers would just sell all the moment they get in, but you find 'last logged in at 12:43 AM from xxx.yyy.zzz.aaa.dsl.telstra.co.za' at a lot of places where you can log in (most forums, Horde webmail etc).

Quote:
In conclusion, basic account security is in the realm of the user. You must protect your user/pass and your computer from basic attacks. No amount of work from CCP can stop some genius from sending his user/pass to a Nigerian prince who has billions of isk tied up. Nor can we save people who visit isk selling sites and go "Gee whiz, the site said to install this thing I guess I'll click ok, dur dur" etc, etc, etc. We must not compromise the ease of which we log onto EVE to protect people who are beyond help.

True. However, providing means of security which go beyond 'something you know' into 'something you have' doesn't have to exclude the less secure user/pass (though you should be able to disable it for your own account as soon as you have an authenticator), hence not making your login on your ultra secure PC slower or more difficult.

Quote:
tin foil hat tax (I mean the authenticator)

You are debating an authenticator will make logging in safer (provided it will be possible to make said authenticator mandatory for your account)?

COPYRIGHT NOTICE
EVE Online, the EVE logo, EVE and all associated logos and designs are the intellectual property of CCP hf. All artwork, screenshots, characters, vehicles, storylines, world facts or other recognizable features of the intellectual property relating to these trademarks are likewise the intellectual property of CCP hf. EVE Online and the EVE logo are the registered trademarks of CCP hf. All rights are reserved worldwide. All other trademarks are the property of their respective owners. CCP hf. has granted permission to EVE-Search.com to use EVE Online and all associated logos and designs for promotional and information purposes on its website but does not endorse, and is not in any way affiliated with, EVE-Search.com. CCP is in no way responsible for the content on or functioning of this website, nor can it be liable for any damage arising from the use of this website.