Curse

jon0592 · May 11, 2009, 12:45 AM // 00:45

All these claims of insecurity...lol.

Well for me, I like it a LOT because I forgot the ID and pass that was linked to my main account. I forgot pretty much all the details and now I can use it again.

Professor K · May 11, 2009, 01:13 AM // 01:13

Quote:

Originally Posted by Chthon

NCSoft runs the site.

Because no one can be assed to fix it. Creating a new crytographical standard is not exactly easy. Neither is convincing the entire farquing internet to upgrade to the new standard. Especially when upgrading costs money, it's just sooo much easier to do nothing, pretend it's not a problem, and hope the well-organized, well-funded attack that's eventually coming hits someone else. Moreover, since it's so easy to convince people (such as yourself) that SSL is "good enough," it's easy to place all the blame on the hacker when something does happen.

Newsflash: Internet banking is not safe.

http://www.guildwars.com - ArenaNet
http://us.ncsoft.com/en/guild-wars/ - NCSoft

Now which one features the Xunlai House?

Again, if you are paranoid of everything internet related you have no place to complain.

Apollo Smile · May 11, 2009, 01:17 AM // 01:17

Quote:

Originally Posted by jon0592

All these claims of insecurity...lol.

Well for me, I like it a LOT because I forgot the ID and pass that was linked to my main account. I forgot pretty much all the details and now I can use it again.

Yeah.

Its a wonder how some of these people even manage to check their email without hyperventilating.

1337 H4X · May 11, 2009, 07:37 AM // 07:37

I reckon there should be an option, just simply two log in boxes side by side, your choice which one you use. Straight info for me for convenience, ncsoft account for those with security issues

refer · May 11, 2009, 12:56 PM // 12:56

I'm coming after all of your accounts! Not really but if it's so insecure and you all have ideas of exploits, why haven't any accounts here been stolen yet? Or for that matter, on any other sites?

Arlan · May 13, 2009, 12:01 AM // 00:01

Just been onto XTH after a while away - noticed the completely redesigned site (which i really liked - i can now select a player/team from the top of the list and place them in position 8!!!) then noticed that you now log in with your GW account details.

Checked it was encrypted (padlock sign) and carried on.

Thought - bound to be a thread in Riverside (i hate it / i love it / why they take so long ) - and look what I found.!!

[QUOTE=tigros;4624298]I assume you people haven't heard of things like single sign-on's...

This has nothing to do with 'single sign on' - (something I am very familiar with). If you signed onto your GW account - then was able to go to XTH without logging in again it would be single sign on - but you can't - so it's not.

Quote:

Originally Posted by eht123

The fact that we now have to take extra precautions of this nature pretty well shouts that the new scheme is less secure than before...

This is standard internet security - it's not 'extra precautions' - it's what you should be doing anyway!!!!

ANY scheme that asks you for there same profile and password you use for somethin gelse is less secure. Stands to reason.

A public website is, simply because it is a website, is more prone to attacks and various skullduggery (technical term!!) to get profiles and passwords.
That they have 'upgraded' the site security (hopefully to minimum basic 128 bit SSL entcryption) IS good enough.
Your log on credentials are more likely to be stolen from a website as opposed from your client side log in to the game itself.

It is 'unlikely' a secure website will allow xss or any of the other nasties out there. Obviously the black hats are always working on ways to break any security on any website. It's always the new stuff that causes problems.

These points stop over 90% of internet related hacks:

A 'strong' password - include a number/character/capital(s) - should stop any brute force attempts.
Dont tell anyone your account details - ever.
Dont click on a link in an email or unknown website page - go to XTH from the main website or type in the url yourself.

Before this change - if you did get hacked - you would lose your armour and Ninja blind fold.

After this change - you would lose your armour etc and then they might do some really really bad predictions for you so you dont get ANY points!!!!
'OUTRAGEOUS!!!!!'

OK - I agree - it is less secure to have the same log in credentials as there are now more ways for those credentials to be mined.
If the website is as secure as they say then I can't see the problem. - it all depends on what your perception is on internet security.
Internet Banking, amazon, ebay, etc - all far more likely to be a concern - and these sites, to a large degree, dont have problems - so why be concerned about XTH?

Change your password and make your predictions.

Enjoy!!!!

pumpkin pie · May 28, 2009, 11:33 AM // 11:33

I don't know if this has anything to do with the change of logging in xth with the real gw accounts users name and passwords but my account which i have been very careful with for 4 years, I even use the onscreen keyboard to login , and i do not save my account info on the web browser but I cannot access 3 of my accounts anymore today. for 4 years I never have a problem and now this. this is very distressing.

Do you know what is the most idiotic things that comes with the merge? since now you need to use the same info to login to access the ncsoft support page, something like this happens you cannot login to the ncsoft support page to open a ticket.

hence i use the email support to send the support ticket, and the email reply direct me to update my support ticket on the ncsoft support page which I cannot access in the first place.

how about that. moronic. huh.