open All Channels
seplocked EVE Information Portal
blankseplocked New Dev Blog: Account Security and You!
 		This thread is older than 90 days and has been locked due to inactivity.


 
Pages: 1 2 3 4 5 [6]

Author Topic

Bhattran
Posted - 2010.12.08 17:03:00 - [151]
 
Originally by: Alexander Renoir
Edited by: Alexander Renoir on 22/11/2010 17:26:22
Edited by: Alexander Renoir on 22/11/2010 17:25:17
Edited by: Alexander Renoir on 22/11/2010 17:11:08
Originally by: CCP Sreegs
Originally by: Callidus Dux
Point: 10. NEVER EVER EVER USE THE SAME USERNAME OR PASSWORD ON ANOTHER SITE ON THE INTERNET ANYWHERE EVER - :mad:

I want different account names and an other password for EVEGate than I use in EVE itself. I am not so dumb and log in from a computer which is not my own or under my control.

Quotation from EVEGate: EVE Gate increases your ability to participate in and further enjoy EVE Online from virtually anywhere.

Thats nonsense If i must use my real EVE-Account data. Or did I miss something? This is also one point, wherefore I do not use EVEGate. I have installed EVE on my computer. I can do everything in EVE. Therefore I do not need EVEGate. Log on from an unknown system seems to be a bad idea when I am forced to log with my real account data.

Please correct me if I am wrong. :-/


We own Eve Gate so I'm not sure what you're asking? If you'd clarify I'd like to understand it.


The official main reason for EVE Gate is: Quotation from EVEGate: EVE Gate increases your ability to participate in and further enjoy EVE Online from virtually anywhere.

I will not use another computer than my own to log in on EVE Gate, if I can not be sure that this computer is clean or safe. For example I think it would be dumb to use EVE Gate from a computer in a internet cafe or from my buddy who downloads a lot of **** :-) Because of keylogger etc.

I have installed EVE on all my EVE-relevant computers. I can do all thinks in EVE (the game) which I can do in EVE Gate. The risk to share my account details with other people who controls the keylogger is to high. Therefor is the main advantage to be "part of the EVE community from everywhere" no advantage, if I am forced to use my real EVE Account Names and passwords to log in and have the risk to share my account-details with others. I hope I have made clear what I mean and say sorry for my little rugged english. :-)
Btw a good blog CCP Sreegs. But point 10 is the main reason why I do not use EVE Gate nor write a lot in this official EVE forum (from other computers than my own). Therefore EVE Gate is useless for me. :-(


This is actually a valid point, and I for one was surprised to learn that I had to use the same password for my account as Evegate a web app as the client. I certainly wouldn't use EVEgate anywhere but on my computers due to it using my account's password and username, can't even log in as a character you need to use your account's username, not that I actually use Evegate as it lacks any useful content for me.

Syreo
Posted - 2010.12.16 14:10:00 - [152]
 
HELP!!!!!

One of my accounts has been hacked as I have been inactive for a while. Whats the correct procedure to getting it back?

Infinion
Caldari
Awesome Corp
Posted - 2010.12.17 05:18:00 - [153]
 
I would love to see an independent password used to get into account management instead of it being linked to the game itself. It would probably also lessen the amount of account takeover cases CCP deals with from account-sharing

Aphrodite Skripalle
Galactic Defence Consortium
Posted - 2010.12.17 15:46:00 - [154]
 
Edited by: Aphrodite Skripalle on 17/12/2010 15:48:13
Edited by: Aphrodite Skripalle on 17/12/2010 15:46:13
I have read the dev blog, i havent read the whole thread here.
But all what ccp sreegs is listing will not solve security problems, because once, someone is watching you typing in the password or having any backdoor logging program your account will be hacked.
No antivirus or any secure behaviour will help you.

The problem is just the login procedure with having a login name and password. This protection is very weak.

Better solution is to have a mantra and a security keypair, one is public and one is the private secret key. The server only needs your public key and you keep your private key somewhere secret.

This would be a very secure way to identify your client on the server and all necessary stuff is free software and available for everyone.

Just check out pretty good privacy incryption (pgp).
PGP

If cpp will implement this pretty good all problems are solved.


Pages: 1 2 3 4 5 [6]

This thread is older than 90 days and has been locked due to inactivity.


 


The new forums are live

Please adjust your bookmarks to https://forums.eveonline.com

These forums are archived and read-only