Edited by: Aphrodite Skripalle on 17/12/2010 15:48:13Edited by: Aphrodite Skripalle on 17/12/2010 15:46:13I have read the dev blog, i havent read the whole thread here.
But all what ccp sreegs is listing will not solve security problems, because once, someone is watching you typing in the password or having any backdoor logging program your account will be hacked.
No antivirus or any secure behaviour will help you.
The problem is just the login procedure with having a login name and password. This protection is very weak.
Better solution is to have a mantra and a security keypair, one is public and one is the private secret key. The server only needs your public key and you keep your private key somewhere secret.
This would be a very secure way to identify your client on the server and all necessary stuff is free software and available for everyone.
Just check out pretty good privacy incryption (pgp).
PGPIf cpp will implement this pretty good all problems are solved.