 |
|
Mar 23, 2007, 12:16 AM // 00:16
|
#1 |
|
Forge Runner
Join Date: May 2005
Guild: The Etereal Guard
Profession: Me/Mo
|
Force entry protection
I recently found that GW accounts doesn't have force entry protection. That is...if the user provide the wrong password for like N times, the system will shut the user out for a period of time. This feature is really needed to protect player's accounts.
|
|
|
Mar 23, 2007, 12:52 AM // 00:52
|
#2 |
|
Forge Runner
Join Date: Feb 2006
|
/notsigned
Sorry, but sometimes I forget my password, or I accidentally have Caps Lock on and I don't realize it, or I just mistype my password. Then I wouldn't like having to wait to reenter it again. Besides, if you want to protect your account, don't share it. |
|
|
|
Mar 23, 2007, 01:00 AM // 01:00
|
#3 |
|
Forge Runner
Join Date: May 2005
Guild: The Etereal Guard
Profession: Me/Mo
|
if you play everyday, you wouldn't be forgetting your password. BTW, you can always have the password send to your email.
Not sharing account can NOT protect your account. People can just come to your PC and take a quick look at your account ID, then guess the password to your account. Last edited by Undivine; Mar 24, 2007 at 12:05 AM // 00:05.. Reason: Merged double-posts |
|
|
|
Mar 23, 2007, 01:28 AM // 01:28
|
#4 | |
|
Forge Runner
Join Date: Feb 2006
|
Quote:
But anyway, guessing a password would take a long time. And if they did guess your password, uumm... Your password obviously stunk. ADDED: Also, whose going to check out you account name? For goodness sake if you play at a Cafe, I'd be worried about a keylogger. Then if a friend were to steal it, wow, terrible friend there. |
|
|
|
|
Mar 23, 2007, 01:40 AM // 01:40
|
#5 |
|
Krytan Explorer
Join Date: Oct 2006
Location: Ottawa, Canada
|
This is really troubling, without force entry proffesion, someone can use a script and brute force your account.
|
|
|
|
Mar 23, 2007, 02:30 AM // 02:30
|
#6 |
|
Banned
Join Date: Nov 2005
Profession: E/Me
|
You shouldn't play anything you care about(or make online purchases for that matter) in a place where people can get your info, end of story.
Since hotmail and other free emails are allowed for logins, it's your own fault for being loose with the email address you use for registration. Most of my game type accounts are related to one email, while I use other addresses for talking to people and messengers and such, for example. I've no pitty for people who don't safeguard themselves. People suddenly bring it up when the game is nearing 2 years old?..... |
|
|
|
Mar 23, 2007, 02:43 AM // 02:43
|
#7 | |
|
Forge Runner
Join Date: May 2005
Guild: The Etereal Guard
Profession: Me/Mo
|
Quote:
|
|
|
|
|
Mar 23, 2007, 02:45 AM // 02:45
|
#8 | |
|
Banned
Join Date: Nov 2005
Profession: E/Me
|
Quote:
Really.... |
|
|
|
|
Mar 23, 2007, 02:52 AM // 02:52
|
#9 |
|
Forge Runner
Join Date: May 2005
Guild: The Etereal Guard
Profession: Me/Mo
|
If force protection is not there, people can actually write a small program and brute force your account ID also. It's not hard.
|
|
|
|
Mar 23, 2007, 03:20 AM // 03:20
|
#10 |
|
Krytan Explorer
Join Date: Mar 2007
Location: Might find me roaming around doing missions in hard mode...or maybe I'm lost in the Underworld...
Guild: [KCOR]
Profession: Mo/
|
/unsigned
You should not have personal information stored anywhere in your account. Yes, it goes by your email, so make sure your password does not match your email password. The amount of work and maintenance it would take to implement this would not be worth the security garnered. Yeah, I don't want anyone hacking my account and playing my characters, but it's just a game and a keylogger can surely find something more profittable to hack as long as I don't have anything on the account that they can use. |
|
|
|
Mar 23, 2007, 03:20 AM // 03:20
|
#11 |
|
Likes naked dance offs
Join Date: Aug 2005
Guild: The Older Gamers [TOG]
|
That the time to work out how long it would take such a scipt to run and you'll see why its not required.
... I for one don't mind if they crack my password 100million years from now. |
|
|
|
Mar 23, 2007, 03:48 AM // 03:48
|
#12 | ||
|
Forge Runner
Join Date: May 2005
Guild: The Etereal Guard
Profession: Me/Mo
|
Quote:
Quote:
|
||
|
|
|
Mar 23, 2007, 03:52 AM // 03:52
|
#13 | |
|
Forge Runner
Join Date: May 2005
Guild: The Etereal Guard
Profession: Me/Mo
|
Quote:
It only take 3 hours at most to write the code for this kind of thing. [/MOD EDIT] *Snip snip*... Please be a bit more gentle in your tone. - Mods |
|
|
|
|
Mar 23, 2007, 04:05 AM // 04:05
|
#14 |
|
Krytan Explorer
Join Date: Mar 2007
Location: Might find me roaming around doing missions in hard mode...or maybe I'm lost in the Underworld...
Guild: [KCOR]
Profession: Mo/
|
No doubt it could be brute forced easily. My point is, who would bother? And if someone did, how would it affect you? Yeah, they can really mess up your game and characters, but there are much more serious things that could be hacked that would have serious ramification rather than a disruption of entertainment. Yes, the protection would be nice, but I don't see it as necesary simply because it would require resources to protect something that in the long run has only entertainment value. I understand your concern and do not mean to diminish it. My ambivolence is simply my personal opinion.
|
|
|
|
Mar 23, 2007, 05:12 AM // 05:12
|
#15 | |
|
Furnace Stoker
Join Date: Apr 2006
Location: South Pole
Guild: The Magus Order
Profession: N/Mo
|
Quote:
|
|
|
|
|
Mar 23, 2007, 05:42 AM // 05:42
|
#16 | |
|
Banned
Join Date: Nov 2005
Profession: E/Me
|
Quote:
lol If it were the case, there would be thousands of cases of stolen accounts and growing daily. Brute Forcing both would take eons, and I'm sure Anet would notice the constant ping, even for just a password. Whatever man, yes, just because you're paranoid doesn't mean they're not after you.....but, in line with that saying, you're still a paranoid nutjob. Note: (i'm not calling him a nutjob, using the universal "you" as in the adage(sp?), I don't want some forum nazi coming along and banning me for name calling) Oh, and thanks for spreading the word that it's possible and incredibly easy... If you were really concerned you'd contact customer support, and NOT post on a public forum. I think the thread deserves a lock. |
|
|
|
|
Mar 23, 2007, 05:48 AM // 05:48
|
#17 | |
|
Banned
Join Date: Jul 2005
|
Quote:
But it boils down to using a secure and effective password. No password should ever be brute forced in under 6 months of trying. Biweekly password changes pretty much makes that a nonissue. |
|
|
|
|
Mar 23, 2007, 06:22 AM // 06:22
|
#18 | |
|
Jungle Guide
Join Date: Apr 2006
Guild: Creating guild
Profession: Mo/
|
Quote:
|
|
|
|
|
Mar 23, 2007, 07:08 AM // 07:08
|
#19 |
|
Forge Runner
Join Date: May 2005
Guild: The Etereal Guard
Profession: Me/Mo
|
a computer can try 5 different passwords in 1 second. That's 300 in a minute and 18000 in an hour. It'll only take a few days to find your password.
|
|
|
|
Mar 23, 2007, 07:33 AM // 07:33
|
#20 | ||
|
Likes naked dance offs
Join Date: Aug 2005
Guild: The Older Gamers [TOG]
|
Quote:
Quote:
8-20 characters per password 96 possible symbols per character 96^8+96^9+96+10+...+96^20 ~= 3.09x10^57 possible combinations if you were doing 18k/hr it would take you 1.96x10^49 years before you could cycle through the possibilities. |
||
|
|
 |
|
«
Previous Thread
|
Next Thread
»
| Thread Tools | |
| Display Modes | |
Linear Mode
|
|
All times are GMT. The time now is 06:40 AM // 06:40.
jQuery(document).ready(checkAds()); function checkAds(){if (document.getElementById('adsense')!=undefined){document.write("_gaq.push(['_trackEvent', 'Adblock', 'Unblocked', 'false',,true]);");}else{document.write("