Pages: [1] :: one page |
|
Author |
Thread Statistics | Show CCP posts - 0 post(s) |
Wacktopia
Dark Side Of The Womb
|
Posted - 2010.01.19 13:02:00 -
[1]
Edited by: Wacktopia on 19/01/2010 13:16:26 Someone suggested to post this here. It is an extension of an existing idea to improve login security by filtering client access by IP address. _________________________________________________________
Personally, I think the following would work well and could exist as an optional security setting.
1. When connecting to EVE from an IP address that has not been used on your character yet you see a message saying "you need to authenticate IP xxx.xxx.xxx.xxx".
2. An email will be sent to your registered email address (or SMS mobile phone) with either a link or a short confirmation code.
3. You enter the code in the EVE client and the IP is added to your 'safe' list.
4. In EVE a/c management there is a list of accepted IP's with a 'remove' option (but no add option, to prevent a would-be hacker from simple manually adding their ip).
This system would satisfy those with one or more fixed IP addresses; those with dynamically-assigned home broadband IP addresses; and those who use internet cafes.
TADAAAAHHH!! :)
Edit: Note the key addition here is to use a third party system, such as email or sms, to authenticate. So having a players username and password (ergo a/c management access at present) is not enough on it's own to enter the game from a new IP.
Also, the list valid IPs in a/c management could be partly masked to deter a hacker from IP spoofing...
???.???.123.231 [x - delete] ???.???.9.21 [x - delete] ---------------------- They're angry there was damage done to their ship. |
darius mclever
|
Posted - 2010.01.19 14:12:00 -
[2]
just two thing you want to consider with your proposal:
1. provider with 24h disconnect
2. provider with dynamic IPs for their customers instead of static IPs
if an eve user happens to have both (like me), your system of authenticating every IP would become rather annoying and useless. the idea with a hardware token that generates a random number to authenticate is much better. imho.
|
Wacktopia
Dark Side Of The Womb
|
Posted - 2010.01.19 16:06:00 -
[3]
Originally by: darius mclever just two thing you want to consider with your proposal:
1. provider with 24h disconnect
2. provider with dynamic IPs for their customers instead of static IPs
if an eve user happens to have both (like me), your system of authenticating every IP would become rather annoying and useless. the idea with a hardware token that generates a random number to authenticate is much better. imho.
I agreee with your points and I cannot argue that a hardware dongle is better. Clearly my suggestion would not work for everyone.
Sadly, I cannot see CCP releasing hardware dongles despite how cool that would be.
My ISP serves dynamic IPs, however, they do not change very often. This appears to by reasonably common where I live from my experience. ---------------------- They're angry there was damage done to their ship. |
Creedeth
|
Posted - 2010.01.19 16:15:00 -
[4]
Make it optional, alot of people have static IP's and I for one would love this.
|
Valandril
Caldari Caldari Provisions
|
Posted - 2010.01.19 16:32:00 -
[5]
If you are smart enought to know that you have static ip, you don't need it.
|
Regat Kozovv
Caldari Alcothology
|
Posted - 2010.01.19 18:43:00 -
[6]
While I can't really argue with a optional system, I still feel as though IP filtering is a fix in search of a problem.
EVE accounts being "hacked" is an authentication problem, not an accessibility one. Regardless if an attacker's IP is blocked or not, he must possess your authentication credentials in order to log in. Once he does, he is, for all intents and purposes, you, and since any IP filtering mechanism must allow for the authenticated user to update the filter (the alternative is blocking legitimate users), he can update the system to allow his IP. The filter is a speedbump, at best.
|
|
|
|
Pages: [1] :: one page |
First page | Previous page | Next page | Last page |