| Author |
Topic:
Anti-Hacking Measures - Coin Lock [Locked] |
|
|
Date Posted:
1/1/00 12:00am
Subject:
Anti-Hacking Measures - Coin Lock |
Authenticator is better than a physical token plugged into the machine directly.
In the case where your machine is compromised, a hacker can keylog your login/id and remotely login to your account via your own machine.
For authenticator, the hacker will need to be physically at your place to use the computer and the authenticator to login to your account.
-----signature-----
"Like almost everyone, I receive a lot of spam every day, much of it offering to help me get out of debt or get rich quick. It's ridiculous." - Bill Gates
|
Quazimortal  Title: The One and Only
Posts: 1,557
Registered: 2004-9-18 21:52:58
|
Date Posted:
1/1/00 12:00am
Subject:
Anti-Hacking Measures - Coin Lock |
Exodus_The_Mage posted:
Authenticator is better than a physical token plugged into the machine directly.
In the case where your machine is compromised, a hacker can keylog your login/id and remotely login to your account via your own machine.
For authenticator, the hacker will need to be physically at your place to use the computer and the authenticator to login to your account.
Exactly, which means if an authenticated account is logged into successfully 300 miles away 2 minutes after you logged off then they had to have done it with your consent and with you providing them with the authentication code. That means there is zero need for your account to be temporarily locked because they logged in from far away and yet sure enough you will be. Stupid redundancy is stupid.
-----signature-----
“A painter paints his pictures on canvas. But musicians paint their pictures on silence.
We provide the music, and you provide the silence.†~Leopold Stokowski
|
|
|
Date Posted:
1/1/00 12:00am
Subject:
Anti-Hacking Measures - Coin Lock |
Quazimortal posted:
Exodus_The_Mage posted:
Authenticator is better than a physical token plugged into the machine directly.
In the case where your machine is compromised, a hacker can keylog your login/id and remotely login to your account via your own machine.
For authenticator, the hacker will need to be physically at your place to use the computer and the authenticator to login to your account.
Exactly, which means if an authenticated account is logged into successfully 300 miles away 2 minutes after you logged off then they had to have done it with your consent and with you providing them with the authentication code. That means there is zero need for your account to be temporarily locked because they logged in from far away and yet sure enough you will be. Stupid redundancy is stupid.
Which is a violation of the TOS and EULA.
I guess they could step it up to an outright ban, and skip the "lock/password change" procedure altogether.
-----signature-----
Guttersludge
People just can't handle the truth.
NeMeFieD said:"  ea I Ucmed for 12 days straight.."
njwCSUS posted:I'm homosexual, so really, its ongoing sexual attraction to my father, not my mother.
|
The_Korrigan  Title: Scrub Buster
Posts: 955
Registered: 2001-7-17 03:51:32
|
Date Posted:
1/1/00 12:00am
Subject:
Anti-Hacking Measures - Coin Lock |
Exodus_The_Mage posted:
Authenticator is better than a physical token plugged into the machine directly.
In the case where your machine is compromised, a hacker can keylog your login/id and remotely login to your account via your own machine.
For authenticator, the hacker will need to be physically at your place to use the computer and the authenticator to login to your account.
If your computer is compromised to the point that someone can remotely use it to log into a WoW account, then you have way more important things to worry about than your WoW account anyway, first thing being to immediately shut down that Internet connection of yours by physically unplugging the cable or disabling the network adapter. Because if someone can control your machine this way, it's not just your WoW account which is at risk.
-----signature-----
SWTOR: 50 Jedi Shadow (Tank), 50 Sith Marauder (Annihilation).
LOTRO: Lifetime account, playing very casually.
WoW: Both accounts canceled for now.
GW2: Future Warrior.
|
Quazimortal Title: The One and Only
Posts: 1,557
Registered: 2004-9-18 21:52:58
|
Date Posted:
1/1/00 12:00am
Subject:
Anti-Hacking Measures - Coin Lock |
GutterSludge posted:
Quazimortal posted:
Exodus_The_Mage posted:
Authenticator is better than a physical token plugged into the machine directly.
In the case where your machine is compromised, a hacker can keylog your login/id and remotely login to your account via your own machine.
For authenticator, the hacker will need to be physically at your place to use the computer and the authenticator to login to your account.
Exactly, which means if an authenticated account is logged into successfully 300 miles away 2 minutes after you logged off then they had to have done it with your consent and with you providing them with the authentication code. That means there is zero need for your account to be temporarily locked because they logged in from far away and yet sure enough you will be. Stupid redundancy is stupid.
Which is a violation of the TOS and EULA.
I guess they could step it up to an outright ban, and skip the "lock/password change" procedure altogether.
Well if I were someone who did that and was banned they would be losing another customer because I wouldn't be getting a new account. I don't like being told who I can or can't give access to my accounts. Mind you I don't share my information at all, but if I did that is the stance I would take.
-----signature-----
“A painter paints his pictures on canvas. But musicians paint their pictures on silence.
We provide the music, and you provide the silence.†~Leopold Stokowski
|
|
|
Date Posted:
1/1/00 12:00am
Subject:
Anti-Hacking Measures - Coin Lock |
I can respect that, Quasi.
-----signature-----
Guttersludge
People just can't handle the truth.
NeMeFieD said:" ea I Ucmed for 12 days straight.."
njwCSUS posted:I'm homosexual, so really, its ongoing sexual attraction to my father, not my mother. |
|
|
Date Posted:
1/1/00 12:00am
Subject:
Anti-Hacking Measures - Coin Lock |
The_Korrigan posted:
Exodus_The_Mage posted:
If your computer is compromised to the point that someone can remotely use it to log into a WoW account, then you have way more important things to worry about than your WoW account anyway, first thing being to immediately shut down that Internet connection of yours by physically unplugging the cable or disabling the network adapter. Because if someone can control your machine this way, it's not just your WoW account which is at risk.
It's not always easy to tell if a machine is compromised these days. Malware can stay stealth with a little manipulation to your anti-virus and firewall tools.
Most online banking sites already offer some form of two-factors authentication (either via physical token or one-time-password via text message), and Gmail added a mobile authenticator option recently as well.
It's a necessary hassle if you want to protect your "valuable" online assets -- banking, trading account, email etc.
-----signature-----
"Like almost everyone, I receive a lot of spam every day, much of it offering to help me get out of debt or get rich quick. It's ridiculous." - Bill Gates
|
Arch_Magi Title: The Lord of Chaos
Posts: 827
Registered: 2002-10-31 14:31:20
|
Date Posted:
1/1/00 12:00am
Subject:
Anti-Hacking Measures - Coin Lock |
|
I can't wait for my free Authenticator app for my smart phone that Rift is coming up with.
|
Sprawl-zero1eye- Title: IGN Vault Staff
Reziztance iz Futile
Posts: 1,001
Registered: 2002-6-28 03:39:29
|
Date Posted:
1/1/00 12:00am
Subject:
Anti-Hacking Measures - Coin Lock |
Quazimortal posted:
Well if I were someone who did that and was banned they would be losing another customer because I wouldn't be getting a new account. I don't like being told who I can or can't give access to my accounts. Mind you I don't share my information at all, but if I did that is the stance I would take.
When you hit agree to EULA, do you cross your fingers behind your back? 
-----signature-----
Mirkwood MUD, OneEye IvoryFang, Lord of the VampireZ (Retired)
AC Frostfell, Clan Z - Lvl 239 Grief Dagger (Retired)
WoW Lightbringer Alliance, Z Guild - Lvl 85 Combat Rogue (Retired)
Making iOS Apps these days at http://zsprawl.com/iOS
|
Sprawl-zero1eye- Title: IGN Vault Staff
Reziztance iz Futile
Posts: 1,001
Registered: 2002-6-28 03:39:29
|
Date Posted:
1/1/00 12:00am
Subject:
Anti-Hacking Measures - Coin Lock |
Arch_Magi posted:
I can't wait for my free Authenticator app for my smart phone that Rift is coming up with.
WoW has this, and it works pretty decently unless you happen to let your phone's battery die. Then you are on hold with Blizzard/Trion trying to unlock your account.
-----signature-----
Mirkwood MUD, OneEye IvoryFang, Lord of the VampireZ (Retired)
AC Frostfell, Clan Z - Lvl 239 Grief Dagger (Retired)
WoW Lightbringer Alliance, Z Guild - Lvl 85 Combat Rogue (Retired)
Making iOS Apps these days at http://zsprawl.com/iOS
|
|
