Security Update

bryan · Mon Jan 22, 2007 3:44 pm

quite a simple addition i would think... anyway

IF an account is logged into by a new ip, ie, one that has not been used on that account, that person can bank, and train troops as miners only. No other stats, info, attacks can be done. no resources can be sold or given away. No passwords can be changed, or anything. The account is basically locked down.

When the account is logged into again by the original IP that made the account, an option appears in top of your command Center. This options stats that your account has been logged into by a different computer, and gives you the chance to give that ip "full access" to your account, or to block it from log-in again. this would prevent the majority of hackings/crackings/password findings into Stargatewars.

Only problem i can see if someone loses internet, and has to move onto a new ISP to get the net back. however, the person would be able to bank or whatever, and be able to email forum for new access.

this would provide a relatively simple technique to stop all the problems of hacking accounts. it gives someone to ability bank away from home as well.

RepliMagni · Mon Jan 22, 2007 3:56 pm

bryan wrote:Only problem i can see if someone loses internet, and has to move onto a new ISP to get the net back. however, the person would be able to bank or whatever, and be able to email forum for new access.

That is the real problem....or even if you go home for a month, but you used to log in with your uni IP....you have to wait a month of just banking until going back to uni...

And yes, forum could do those things but....he can also let people trade with the same IP...hands up all the people that have actually got a response? :lol:

Its probably easier to let forum deal with it as and when it happens....would probably give him less work to do, and be easier to reset someone's account to a certain date. :wink:

Munchy · Mon Jan 22, 2007 4:45 pm

Some people have IP's that change constantly, everytime they acess the internet.. This would kind of screw them over :wink:

bryan · Mon Jan 22, 2007 4:59 pm

use an ip range

maybe a shut off/ turn on switch would work

RobinInDaHood · Mon Jan 22, 2007 7:32 pm

Or do what I do:

Simply use a 48 character long password composed of Latin, Cyrillic, and Egyptian Coptic character sets mixed with decimal numbers, extended control characters, and financial symbols from at least three different countries.

Mon Jan 22, 2007 10:01 pm

must be hard to type in...

Kikaz · Mon Jan 22, 2007 10:03 pm

Munchy wrote:Some people have IP's that change constantly, everytime they acess the internet.. This would kind of screw them over

I had that might still do. :shock:

El TC · Mon Jan 22, 2007 10:12 pm

RobinInDaHood wrote:Or do what I do:

Simply use a 48 character long password composed of Latin, Cyrillic, and Egyptian Coptic character sets mixed with decimal numbers, extended control characters, and financial symbols from at least three different countries.

Hahaha

thanxs for the laugh, funniest thing I read today.

SG · Mon Jan 22, 2007 10:16 pm

Dynamic assigned IP's blow your idea mostly out of the water. What happens when the bank is full?

Since you said nothing affecting stats could be done except training miners .. They can use the naq to train miners, great idea!

Since the bank is full and you have money and no where to put it besides miners ..

Guess you get the idea.

Having a range of IPs can help, but it still leaves a window for other players that either live near you or use the same ISP.

A better feature would be to allow accounts to be 'optionally' locked to an IP range(s). Since it is toggable, people can turn it off while leaving town or something and still log in else where. Then when they are back where they usually are, they can have it on.

Tue Jan 23, 2007 12:51 am

Just make it that way, that all new ips have to be activated by repliing an email...

El TC · Tue Jan 23, 2007 1:23 am

As Robin said (although massively exaggerating )

, a decent password is basically all you need.

bryan · Tue Jan 23, 2007 2:55 pm

really? i changed mine only a week ago, and it seems someone still got in.... and it wasnt just a word either.

Tue Jan 23, 2007 2:59 pm

maybe they have some kind of way that they can monitor someone for the kind of "package" that contains password changes? and then fish out the new password from that "package"?

might that be why it happened now?

SG · Wed Jan 24, 2007 1:39 am

Zeratul wrote:maybe they have some kind of way that they can monitor someone for the kind of "package" that contains password changes? and then fish out the new password from that "package"?

might that be why it happened now?

While doable not worth the effort to ruin someone's game account. This is after all just a game ...

El TC · Wed Jan 24, 2007 1:56 am

yeah, I agree.

There are allot of other game sites out there, sgw clones, they look legit, they work legit and have all the bells and whistles and have the same setup to login as sgw. Now they are setup to get your password and email since some players don't bother to change it.

The IP idea is interesting though complicated to code I guess, a simpler solution would be a login log file which displays the last 10 logged in IP's to your account. If that is too much trouble, one could have a small display on top which simply states: You last logged in at this time with this IP."

Security Update

Security Update

Re: Security Update

Honours and Awards

Honours and Awards

Honours and Awards

Login