Pages: [1] 2 3 :: one page |
|
Author |
Thread Statistics | Show CCP posts - 0 post(s) |
Finde learth
Republic Military School Minmatar Republic
15
|
Posted - 2012.07.16 02:03:00 -
[1] - Quote
SERENITY already have this.
And Horace said Tranquility will have "soon".(I don't have the link because i don't have the microblog account.)
pÇîs¢Psñì@Fû¢s«ÜF¦ötÜätî½FǦµ£¦:1. µ¼ºµ£ìS+Üt½ïsì¦sÉ»tö¿sÆîs¢+µ£ìS+ǵá+tÜätÖ+TÖåsÖ¿n+îF+Ös¦åµÿ»EVEsà¿tÉât+ƒS+ÇtÜätÖ+s+òµû¦s+Ån+îsŬS+ìF+çsàês£¿s¢+µ£ìS+èt¦+S¦ån+¢2. T¬îF»ütáütÜäS+ôT¬îµêæS+¼F+æµ£ƒS+ÜS+«sñìsÆîS+ÿsîûpÇépÇì
I have ask Hilmar about this on twitter,still waiting for his response. https://twitter.com/Finde_learth/status/224528638836604928
|
Johan Civire
Dirty Curse inc.
24
|
Posted - 2012.07.16 02:05:00 -
[2] - Quote
Finde learth wrote:SERENITY already have this. And Horace said Tranquility will have "soon".(I don't have the link because i don't have the microblog account.) pÇîs¢Psñì@Fû¢s«ÜF¦ötÜätî½FǦµ£¦:1. µ¼ºµ£ìS+Üt½ïsì¦sÉ»tö¿sÆîs¢+µ£ìS+ǵá+tÜätÖ+TÖåsÖ¿n+îF+Ös¦åµÿ»EVEsà¿tÉât+ƒS+ÇtÜätÖ+s+òµû¦s+Ån+îsŬS+ìF+çsàês£¿s¢+µ£ìS+èt¦+S¦ån+¢2. T¬îF»ütáütÜäS+ôT¬îµêæS+¼F+æµ£ƒS+ÜS+«sñìsÆîS+ÿsîûpÇépÇì I have ask Hilmar about this on twitter,still waiting for his response. https://twitter.com/Finde_learth/status/224528638836604928
now in english? |
Tarsus Zateki
GoonWaffe Goonswarm Federation
691
|
Posted - 2012.07.16 02:13:00 -
[3] - Quote
Using two part authentication works really well in Blizzard's line of games. No one that uses an authenticator has been publicly proven to have had their accounts compromised (lots of folks that have lied about having one though and been hilariously called out by Blizzard GMs). Of course with nearly ten million subscribers to World of Warcraft and several million other players in Diablo 3 there is a huge market for currency and items sourced from stolen accounts. I wonder how large an issue this is in Eve Online.
Either way as a user of an authenticator in my Blizzard games I'd happily support two part authentication in Eve Online, even if it was a just a simple E-Mail code sent to you when you try to log-in through an unfamiliar IP Address and such. You asked me once, what was in Room 101. I told you that you knew the answer already. Everyone knows it. The thing that is in Room 101 is the worst thing in the world. |
Tarsus Zateki
GoonWaffe Goonswarm Federation
691
|
Posted - 2012.07.16 02:14:00 -
[4] - Quote
Johan Civire wrote:
now in english?
His post made perfect sense, but if we're being idiots in this thread... you have poor hygiene and dress in a shabby manner. You asked me once, what was in Room 101. I told you that you knew the answer already. Everyone knows it. The thing that is in Room 101 is the worst thing in the world. |
Torneach
Apocalypse Exploration
272
|
Posted - 2012.07.16 02:57:00 -
[5] - Quote
Is it really necessary? |
Tarsus Zateki
GoonWaffe Goonswarm Federation
695
|
Posted - 2012.07.16 02:58:00 -
[6] - Quote
That would depend on how frequently Eve-Online accounts are stolen. Up to Screegs really. You asked me once, what was in Room 101. I told you that you knew the answer already. Everyone knows it. The thing that is in Room 101 is the worst thing in the world. |
Corina Jarr
Spazzoid Enterprises Purpose Built
1052
|
Posted - 2012.07.16 03:01:00 -
[7] - Quote
I'd have no problem with it.
Its not like it would make our lives a frustrating nightmare like the captcha suggestions.
As for when, when CCP thinks it is needed. |
Tarsus Zateki
GoonWaffe Goonswarm Federation
695
|
Posted - 2012.07.16 03:02:00 -
[8] - Quote
Corina Jarr wrote: ...captcha suggestions...
Careful now, this is CCP we're talking about. You asked me once, what was in Room 101. I told you that you knew the answer already. Everyone knows it. The thing that is in Room 101 is the worst thing in the world. |
Degren
Dreddit Test Alliance Please Ignore
1851
|
Posted - 2012.07.16 03:11:00 -
[9] - Quote
About to leave work, will translate when I get home.
~an hour.
Reserving post, obviously. This avatar is as happy as Eve gets! -áSoooooo happy. |
Viktor Fyretracker
Emminent Terraforming
38
|
Posted - 2012.07.16 03:32:00 -
[10] - Quote
Corina Jarr wrote:I'd have no problem with it.
Its not like it would make our lives a frustrating nightmare like the captcha suggestions.
As for when, when CCP thinks it is needed.
Captcha is a horrible thing. bots still get around it and its scrambled letters can be hard to read. EVE is like swimming on a beach in shark infested waters,-á There is however a catch...-á The EVE Beach you also have to wonder which fellow swimmer will try and eat you before the sharks. |
|
Tau Cabalander
Retirement Retreat Working Stiffs
868
|
Posted - 2012.07.16 03:45:00 -
[11] - Quote
Tarsus Zateki wrote:Using two part authentication works really well in Blizzard's line of games. No one that uses an authenticator has been publicly proven to have had their accounts compromised (lots of folks that have lied about having one though and have been hilariously called out by Blizzard GMs after claiming to be hacked). I lost my Blizzard authenticator, and found it again after about 2 years of playing EVE.
I can vouch that an authenticator is a great way to prevent account access
It is probably 3-5 years old and still works. Good battery. |
Degren
Dreddit Test Alliance Please Ignore
1851
|
Posted - 2012.07.16 04:31:00 -
[12] - Quote
Tau Cabalander wrote:Tarsus Zateki wrote:Using two part authentication works really well in Blizzard's line of games. No one that uses an authenticator has been publicly proven to have had their accounts compromised (lots of folks that have lied about having one though and have been hilariously called out by Blizzard GMs after claiming to be hacked). I lost my Blizzard authenticator, and found it again after about 2 years of playing EVE. I can vouch that an authenticator is a great way to prevent account access It is probably 3-5 years old and still works. Good battery.
Just FYI, the original blizz authenticators were cracked. This avatar is as happy as Eve gets! -áSoooooo happy. |
Tau Cabalander
Retirement Retreat Working Stiffs
868
|
Posted - 2012.07.16 18:40:00 -
[13] - Quote
Degren wrote:Just FYI, the original blizz authenticators were cracked. Not a crack per se, but a man-in-the-middle attack when using a trojan infected key-logging computer, and with a 30 second vulnerability window.
I wonder about people that run random executables, or click on questionable links, or surf without script and pop-up protection, etc. |
Finde learth
Republic Military School Minmatar Republic
15
|
Posted - 2012.07.17 06:20:00 -
[14] - Quote
http://i.imgur.com/mfr4g.png XJPNU8 is verified code.
I really don't want see this happen on Tranquility. |
Kel Shek
Blue Sun Labs
0
|
Posted - 2012.07.17 06:56:00 -
[15] - Quote
I think some sorta captcha thing for EVE would be bad and completely unneccessary.
I think an authenticator type deal would be kinda nifty. though realistically, a bit excessive.
if it could be made into a cool keychain though, and no more expensive than the Blizz ones, might be totally worth it.
I mean ultimately there's a lot more at stake in an EVE account than in a WOW account. so it makes a certain amount of sense. |
Oberine Noriepa
844
|
Posted - 2012.07.17 07:13:00 -
[16] - Quote
Note that those screenshots feature the launcher and not the client itself. It's not a bad thing in the slightest. |
Xercodo
Disturbed Friends Of Diazepam
1218
|
Posted - 2012.07.17 07:19:00 -
[17] - Quote
Oberine Noriepa wrote:Note that those screenshots feature the launcher and not the client itself. It's not a bad thing in the slightest.
Um, CCP wants to push the login process to the launcher and make the client only character select.
This being a normal thing is a possibility. But I only see it as a bot deterrent for bots that run completely on their own through downtimes too.
The bot users would simply just login manually and let the bot take over form there. It has been said that the Serenity server is over run with bots cause....well we all know the Chinese gold farmer stereotype :3 The Drake is a Lie |
Finde learth
Republic Military School Minmatar Republic
15
|
Posted - 2012.07.17 07:20:00 -
[18] - Quote
Oberine Noriepa wrote: Note that those screenshots feature the launcher and not the client itself. It's not a bad thing in the slightest.
You can't log in unless you use the launcher log in. So it means if eve auto restart for any reasons, you need to close the auto restart EVE then use the launcher log in.
That's very annoying.
And the launcher log in won't save your account name. |
Vitamin B12
30
|
Posted - 2012.07.17 07:50:00 -
[19] - Quote
A feature like this would only harm the normal player.
Bots will simply use a captcha solving service (deathbycaptcha.com for example). Capital Ships Related BPC's & BPO's // fair price-á// fast delivery https://forums.eveonline.com/default.aspx?g=posts&m=973041 |
Chokichi Ozuwara
Royal One Piece Corporation Deadly Unknown
380
|
Posted - 2012.07.17 07:56:00 -
[20] - Quote
Captcha does nothing to secure your account. Bots are designed to capture captchas and fire them off to third party solving services (manual and automated) which beat them easily.
Adding this would be stupid. It would be like 2008 all over again. Tears will be shed and pants will need to be changed all round. |
|
Terrorfrodo
Deep Space Darwinian Law Enforcement Agency
88
|
Posted - 2012.07.17 08:01:00 -
[21] - Quote
I HATE captchas. Don't do this! The Invulnerability Sphere:Make mining/industrial vessels defendable, better fights for everyone! |
dexington
Lysergic.acid.diethylamide
53
|
Posted - 2012.07.17 08:08:00 -
[22] - Quote
Chokichi Ozuwara wrote:Captcha does nothing to secure your account. Bots are designed to capture captchas and fire them off to third party solving services (manual and automated) which beat them easily.
Adding this would be stupid. It would be like 2008 all over again.
It protects you account against brute force attacks, or at least makes the process of brute force attacks slow and expensive if there is no way to decode the answer without human interaction. |
Terrorfrodo
Deep Space Darwinian Law Enforcement Agency
88
|
Posted - 2012.07.17 08:38:00 -
[23] - Quote
To protect against brute force attacks, they could just throttle login attempts: When you enter a wrong password twice, you can't attempt another login until three minutes have passed. Brute-forcing an account would take a looong time then. The Invulnerability Sphere:Make mining/industrial vessels defendable, better fights for everyone! |
Pak Narhoo
Knights of Kador
625
|
Posted - 2012.07.17 09:26:00 -
[24] - Quote
Can't say I'm going to be happy with this but if it is a working deterrent to bots.... Hi, I'm CCP Arrow, I screwed up the.. ummm... |
dexington
Lysergic.acid.diethylamide
53
|
Posted - 2012.07.17 09:33:00 -
[25] - Quote
Terrorfrodo wrote:To protect against brute force attacks, they could just throttle login attempts: When you enter a wrong password twice, you can't attempt another login until three minutes have passed. Brute-forcing an account would take a looong time then.
That works well against brute force attacks that target a single account, but is very ineffective against other automated attacks that simultaneously attacks multiple accounts.
|
Terrorfrodo
Deep Space Darwinian Law Enforcement Agency
88
|
Posted - 2012.07.17 09:40:00 -
[26] - Quote
If every account can have only a very limited number of unsuccessful login attempts per day, then the overall number of accounts hacked by brute force attacks will be very low. Only those choosing a really bad password will be vulnerable, but EVE does enforce the choosing of a reasonably complex password now.
Tbh I don't see how people still get hacked other than by keyloggers infecting their computers. Captchas won't protect us from that either. The Invulnerability Sphere:Make mining/industrial vessels defendable, better fights for everyone! |
Mara Rinn
Cosmic Industrial Complex Cosmic Consortium
1627
|
Posted - 2012.07.17 09:47:00 -
[27] - Quote
Why not just implement the two-factor authentication for which we already have the damned key fobs?
How is CAPTCHA supposed to prevent brute-force attacks anyway? CCP surely know that there are sweat shops dedicated to people solving CAPTCHAS for fifty cents an hour, don't they? (just check out Amazon's Mechanical Turk) Day 0 advice for new players: Day 0 Advice for New Players |
Anya Ohaya
School of Applied Knowledge Caldari State
143
|
Posted - 2012.07.17 10:07:00 -
[28] - Quote
Terrorfrodo wrote:To protect against brute force attacks, they could just throttle login attempts: When you enter a wrong password twice, you can't attempt another login until three minutes have passed. Brute-forcing an account would take a looong time then.
3 minutes is overkill. 3 seconds should be enough to make brute force attacks impractical on all but the weakest passwords (it would take eight hours go through a dictionary of common words)). |
Random Celestial
Royal Amarr Institute Amarr Empire
3
|
Posted - 2012.07.17 13:04:00 -
[29] - Quote
dexington wrote:Chokichi Ozuwara wrote:Captcha does nothing to secure your account. Bots are designed to capture captchas and fire them off to third party solving services (manual and automated) which beat them easily.
Adding this would be stupid. It would be like 2008 all over again. It protects you account against brute force attacks, or at least makes the process of brute force attacks slow and expensive if there is no way to decode the answer without human interaction.
You can buy 1000 captcha solves for $1.37 USD.
<- Runs craigslist bots for car dealers, CL dropped captchas now though. |
Roc Wieler
Tribal Liberation Force Minmatar Republic
177
|
Posted - 2012.07.17 13:16:00 -
[30] - Quote
There are many good forms of captcha other than scrambled letters.
http://www.jquery4u.com/security/10-jquery-captcha-plugins/
Of course, as mentioned, none of these is 100% foolproof, but many serve as a deterrent, and that makes a difference. Never start a fight you can win.
|
|
|
|
|
Pages: [1] 2 3 :: one page |
First page | Previous page | Next page | Last page |