EVE Search - just so everyon notice this.. Big Subject everybody read

All Channels

EVE General Discussion

just so everyon notice this.. Big Subject everybody read

» Click here to find additional results for this topic using Google

Monitor this thread via RSS [?]

Author	Thread Statistics \| Show CCP posts - 1 post(s)
Sorela Gallente	Posted - 2007.01.18 18:55:00 - [1] Originally by: Eldo Davip If you think this is a problem then please petition the GMs. AFAIK I know this is standard policy with many alliances. I'm not sure if this is a EULA violation or not Oh man. If ISD doesn't even know if this is EULA violation and it's a "standard" alliance practice then it's time to get some GM's and gold boxes in here and make a sticky in the proper forums. First off I've not checked the EULA but even if it isn't a violation currently it needs to be made one quickly. Second off asking a person for their login name counts as social engineering/pretexting and is probably illegal in many countries. I am not a lawyer but if I were CCP I'd starting asking one quickly if they plan to not make this an EULA offense going forward. Link for those who don't know what social engineering is: http://en.wikipedia.org/wiki/Pretexting
Sorela Gallente	Posted - 2007.01.18 19:00:00 - [2] Originally by: Daddy's Belt Is this some sort of language barrier In case it is a language barrier I will clear it up a bit. [ 2007.01.18 17:09:32 ] Tyleritus > so i can see how many accounts you have [ 2007.01.18 17:09:35 ] Tyleritus > yeah He's asking for something to show how many ACCOUNTS the op has. He's also already recieved info about the CHARACTERS thus he deffinetly means ACCOUNTS. Therefore he is deffinetly asking for the login screen and login names. I think it would be extreme to penalize him if CCP hasn't been clear on this issue but it deffinetly needs to be made clear going forward. No way should people be required to give out dangerous info to join alliances.
Sorela Gallente	Posted - 2007.01.18 19:10:00 - [3] Originally by: Raivi Edited by: Raivi on 18/01/2007 18:59:21 CCP will not penalize someone for this kind of action. If you raise enough of a stink about the whole thing then they will just change the EULA to make this action legal. I doubt that. The corps in question get nothing from doing it really and it's deffinetly legal rocky ground to allow it. Plus in light of the huge rise of account hacking lately it's blatently stupid to allow players to ask for another players login name. Not "joining the alliance" has nothing to do with it since anyone who really wants to do so can clear their account list and create bogus names easily bypassing this step. The real reason to argue about this is some trusting person IS going to hand out his login name then make the mistake of using his EVE password for his corp forums and get his account hacked. It WILL happen. There is nothing to be gained from letting it happen.
Sorela Gallente	Posted - 2007.01.18 19:11:00 - [4] Originally by: LUGAL MOP'N'GLO You can't do **** with a character login name anyways. With someone's login name you're about .025% closer to getting into the account. No offense but that's just pure hogwash and you are speaking about something you know nothing about. Keeping login names hidden is almost as important as keeping your password hidden for laymen who rarely keep secure passwords.
Sorela Gallente	Posted - 2007.01.18 19:15:00 - [5] Originally by: smashsmash i think it would be wise for ccp to put some sort of safer verification system directly in game for this purpose. like one that lets you send people a confirmation in game of what your alts are for that account or if two people are related or something. Not even CCP has the power to know what accounts you have. Theres really no way to design such a system to be foolproof. Although they could implement a system that allows you to let someone temporarily see which CHARACTERS login from the same IP address. As long as the IP isn't shown and only the characters themselves are shown. This would prolly help a good bit in what people are really trying to acomplish.
Sorela Gallente	Posted - 2007.01.18 19:21:00 - [6] Originally by: Beef Hardslab Especially as (as far as I can tell) there is no sa***uard for "guessing" passwords. That's even worse if true. I bet there is actually a limit on brute forcing the PW but a lot of people do use horrible PW's so brute forcing them doesn't take many tries. There is also the fact that most of this stuff is done through screenshots so we've got people with screenshots on eve files or whatever with login names and who knows who will find them.
Sorela Gallente	Posted - 2007.01.18 19:25:00 - [7] Oh boy following up on my last thought I just went to eve files and searched for login. The large majority of the screens were character logins but I did find several very quickly with login names in clear sight. This is a HUGE problem from a security standpoint. We can't even change our user names.
Sorela Gallente	Posted - 2007.01.18 19:33:00 - [8] Originally by: LUGAL MOP'N'GLO A member of ISD in a thread I can't find said that obtaining a login name is useless. That's why I said what I said. Sorry I came off a little harsh on you but I know several people who have lost accounts in various MMO's now and I get a little irked when I think people might read a post with bad advice and put themselves in a precarious situation. Not your fault though as theres no reason for you to fault something ISD has said and I shouldn't come off so hostile anyways. Neverthless I'll make it clear again even if someone in ISD said that he was speaking outside the realm of things he knows anything about. Giving out user names is very dangerous and nobody should do it. Let alone post a screenshot of it on eve files where any random bastage can see it. Quote: Secondly, its not like the guy got your login anyways so quit trying to fry the guy. Dunno if that was to me specifically but personally I don't even think the LV recruiter needs an official "warning" since it seems everyone has been doing this. I just want to see some gold boxes and stickies saying "don't do this anymore it's a EULA violation and we will ban you" etc etc.
Sorela Gallente	Posted - 2007.01.18 19:37:00 - [9] Originally by: Raivi (considering the reputation of the corp, the chance of getting an account hacked and the loss if your account is hacked) I've already clearly pointed out that the corp your applying too might nto be the only one to see the account names. Your point of view is not wrong but this is a security issue and corps gain almost nothing from asking people to do this. Thus there is zero reason to allow it to continue when it is dangerous. I'm not someone who ascribes to the philosophy of "users are stupid" but they are often lacking in knowledge of how to protect themselves. It's only logical to make it clear players should not ask other players for their login names.
Sorela Gallente	Posted - 2007.01.18 19:46:00 - [10] It's not like they even need to see the user name. They just want to verify # of accounts so a screenshot of the dropdown with the usernames blurred should be fine. Thus nobody should have complaints if CCP gets on here ane makes it clear asking for account names is not allowed.
Sorela Gallente	Posted - 2007.01.18 20:14:00 - [11] Originally by: Jinx Barker Erhm.. they asked you for your CHARACTER LOGIN SCREEN. As others pointed out. Not reading the thread FTL. Would be good of you to reread and correct your post.
Sorela Gallente	Posted - 2007.01.18 20:28:00 - [12] Originally by: Elve Sorrow It's easy enough, but when you don't expect it and are given 2 minutes to have the screenshot uploaded its a hell of a lot harder. I don't expect to dissuade you to stop from asking for it if CCP doesn't make it a EULA violation. But please consider giving them a bit more time (3 mins or something) and suggesting to them that they open the SS in MS paint and blur their character names. This will still let you know the same info (account #'s) and will not leave them with an SS posted somewhere where someone might find it with the account names that they might forget to delete.
Sorela Gallente	Posted - 2007.01.18 20:31:00 - [13] Originally by: Dragunov When you get a job IRL you give them your social security number and they do a background check on you. Perfectly legal. Uhh that doesn't really have anything to do with this. You are making a straw man argument and have not actually done anything useful by saying this. http://en.wikipedia.org/wiki/Straw_man Quote: They'd even have your home address and could send someone over to check on you. Please don't ever go into security.

COPYRIGHT NOTICE
EVE Online, the EVE logo, EVE and all associated logos and designs are the intellectual property of CCP hf. All artwork, screenshots, characters, vehicles, storylines, world facts or other recognizable features of the intellectual property relating to these trademarks are likewise the intellectual property of CCP hf. EVE Online and the EVE logo are the registered trademarks of CCP hf. All rights are reserved worldwide. All other trademarks are the property of their respective owners. CCP hf. has granted permission to EVE-Search.com to use EVE Online and all associated logos and designs for promotional and information purposes on its website but does not endorse, and is not in any way affiliated with, EVE-Search.com. CCP is in no way responsible for the content on or functioning of this website, nor can it be liable for any damage arising from the use of this website.