open All Channels
seplocked Features and Ideas Discussion
blankseplocked Player Website Login Security
 
This thread is older than 90 days and has been locked due to inactivity.


 
Author Topic

Khatan
Gallente
Posted - 2003.06.03 14:03:00 - [1]
 

I am very concerned about the fact that we are required to use our in-game login/password to access these forums, yet there appears to be no encryption or any other form of protection when we supply our details to get access here.

Could you please increase the security before you start getting players accounts hacked. If there is already security on the Player Website login page, then could you please state that on the page as web browsers are indicating that it is totally unprotected.

K'thang
Gallente
Ferengi Trade Alliance
Posted - 2003.06.03 14:41:00 - [2]
 

Yes I agree, a secure server is needed or else accounts will be hacked.

K.

Xane
Minmatar
Republic Security Services
Posted - 2003.06.03 15:13:00 - [3]
 

This is essential, as CC details are stored with the account too.

Weaselsmasher
Posted - 2003.06.04 05:37:00 - [4]
 

This is very true, and very serious, especially for cable modem users, dormitory network users in universities, and people who live in "smart building apartments/condominiums which have a shared Internet connection for the residents. Many of these network installations are hub-based, rather than switch-based... meaning that someone with even a slight amount of technical savvy can "sniff" their neighbors' traffic.

CCP does indeed have a duty to use a secure server for any service which requires a user to enter their game account name and account password. And fast.

Mister Six
Posted - 2003.06.04 06:20:00 - [5]
 

/agree

Madcow
Minmatar
Sebiestor Tribe
Posted - 2003.06.04 08:50:00 - [6]
 

The devs want to know precisly what to do with this part if it should be implemented ingame they asked in the dev blog. They already said the incryption is already finished only waiting to be implemented when they know what to do.

Achmed Twenty
Posted - 2003.06.04 10:23:00 - [7]
 

noone can ahck ur accotn until hes near ur computer and is running a sniffer, or hes sitting in front of teh CCP firewall and catches every incoming login attempt.

cpp has ur account data NEway and every other hacking just can be done by a simple trojan hore :)

security is just an illusion ;)

Weaselsmasher
Posted - 2003.06.04 20:08:00 - [8]
 

That's the point. For many people, such as in the examples I gave, there ARE people who are near your computer, who CAN sniff your traffic, and CAN dig out passwords in unencrypted traffic.

Absolute security is an illusion. Adequate security is not. Just because lockpicking tools exist in the world doesn't mean you don't put a lock on your front door.

Yatar Kindoki
Caldari
H.Y.D.R.A.
Posted - 2003.06.04 21:28:00 - [9]
 

Check the dev-blog, logins are now sent trough SSL (although afterward it jumps right back to plain http to prevent any extra overhead).


 

This thread is older than 90 days and has been locked due to inactivity.


 


The new forums are live

Please adjust your bookmarks to https://forums.eveonline.com

These forums are archived and read-only