This site makes extensive use of JavaScript.
Please enable JavaScript in your browser.
Live
PTR
10.2.7
PTR
10.2.6
Beta
Battle.net Real ID System - Call To Arms
Post Reply
Return to board index
Post by
329396
This post was from a user who has deleted their account.
Post by
Onijitsu
I specifically chose an e-mail which would never, ever match the name of any of my characters, and make it much harder for anyone to guess my login. Perhaps Blizzard's response to this issue will be, "Get an authenticator!" But my response is that authenticators are an added level of security... I do not want to eliminate one basic form of security in favor of another; I want them
stacking
with one another.
So what you're saying is that you don't trust any of your real life friends.
Edit: And aside from the one time that the email is given to them,
they never see it again.
Don't put words in my mouth. You are basing your argument not upon any virtue in Blizzard's implementation, but upon your faulty, accusatory perceptions of some negative character trait in myself. (An ad hominem attack, is what this is)
IIRC, there is an old Arab saying to the effect of, "Trust in Allah, but
still
tie your camel to a post."
I have two ex-wives. I would have given them anything, during our time together. Including my life, and my internal organs. However, when things went sour? One ransacked my computer, during our divorce. I ended up hacking her e-mail and then saying, "We can either play nice with one another, or we can be as mean as we can be... how would you prefer this go?"
Blizzard ought to be providing us a system which does not make us unnecessarily vulnerable in order to link up with a few friends. That's all I'm saying. For a company which does several million dollars in revenue, on virtual pet sales alone, one would think they could come up with something much more intelligent than this.
I specifically chose an e-mail which would never, ever match the name of any of my characters, and make it much harder for anyone to guess my login. Perhaps Blizzard's response to this issue will be, "Get an authenticator!" But my response is that authenticators are an added level of security... I do not want to eliminate one basic form of security in favor of another; I want them
stacking
with one another.
So what you're saying is that you don't trust any of your real life friends.
It may not be a matter of trusting "real life friends" but trusting every single friend or online acquaintance *of those friends.*
I have already read a post from a mother whose young daughter plays a character on the dad's account when he is not playing. "Dad" thinks this new real ID system is great and has now added all his gaming buddies on Real ID.
I don't know about you, but not all my "gaming buddies" on WoW are people that my 8yo little girl needs to be chatting with. What if one of those gaming buddies has had a few too many, sees 8yo girl's toon name listed next to "Dad's" name and starts whispering her about his might on the town, thinking she is his buddy? Yikes.
What happens if "Friend of Friend" sees "Dad's" name and sends a friend request while 8yo is playing, and she accepts not knowing that the guy is in fact "Pervy Ex-College roommate" that "Dad" has no desire to ever be in contact with again?
Too much potential for problems, not enough methods to prevent them.
Agreed. My two daughters (ages 7 and 5) play on my wife's account. I specifically created my own guild on an alt, just for them. And I don't want anyone messing with my daughters. Period.
Post by
Rilgon
I have a close friend who played WoW with her fiance. Her fiance turned out to be a dishonest, cheating dirtbag. If I had used Real ID, this guy who has become an untrustworthy social pariah would now have access to everyone's login ID. That would be a very unnerving situation.
This could be a cool service if it just had some BASIC consideration for privacy. Unfortunately it doesn't, so I won't use it.
no one
sees
your login email
except
the one time
Post by
206732
This post was from a user who has deleted their account.
Post by
206732
This post was from a user who has deleted their account.
Post by
sememon
no one
sees
your login email
except
the one time
Thats still 1 time too many for me. I dont want to give out my login email to anyone, ever! And the only people I want knowing my realy name are friends and family who already know it.
When you introduce a system like RealID, Privacy setttings are a must have, no ifs or buts.
Post by
Onijitsu
no one
sees
your login email
except
the one time
Why would you ever want to give that out, even one time?
With how prevalent gold selling is in the game, what happens if you give this information -- just once -- to someone who might put that information to some use other than being your friend?
Can I have your bank account information and Social Security Number?
Just once.
I
promise
I won't do anything else with it. =)
Post by
Rilgon
With how prevalent gold selling is in the game, what happens if you give this information -- just once -- to someone who might put that information to some use other than being your friend?
Because I'm... going to give it to people I know in real life whose asses I could kick if they did anything with it?
Kinda like
the stated design goals?
Edit: also, seriously lolin' at you comparing a bank account number to one third of a three-part authentication sequence (one of which is a OTP).
Post by
Onijitsu
Because I'm... going to give it to people I know in real life whose asses I could kick if they did anything with it?
Good luck trying to get out of an assault and battery citation, telling the Judge that, "They did something with my e-mail address!" EDIT: Especially, when you have to also admit that you freely gave that address to these individuals. My father (an attorney) would laugh at you. Repeatedly.
In other words, you have little recourse, once you stupidly give that information out.
More to the point, WHY should you give that information out at all? Why is this even part of the Real ID system? EDIT: And, why are you defending it?
Edit: also, seriously lolin' at you comparing a bank account number to one third of a three-part authentication sequence (one of which is a OTP).
Two-part sequence. You just gave half of your security away. Authenticators are optional.
(Even though I have an authenticator for both myself and my wife. And, one more backup in case one of the two goes south)
Post by
Rilgon
Good luck trying to get out of an assault and battery citation, telling the Judge that, "They did something with my e-mail address!"
In other words, you have little recourse, once you stupidly give that information out.
More to the point, WHY should you give that information out at all? Why is this even part of the Real ID system? EDIT: And, why are you defending it?I guess jokes are beyond you.
And I'm defending it because it's the most logical implementation with regards to time. It's an email address. It's the least secure and most easily obtained part of your login schema. And because I trust the people I'm giving it to.
Two-part sequence. You just gave half of your security away. Authenticators are optional.
Anyone without an authenticator has no room to talk about anything, security or privacy-wise.
Post by
Onijitsu
Good luck trying to get out of an assault and battery citation, telling the Judge that, "They did something with my e-mail address!" EDIT: Especially, when you have to also admit that you freely gave that address to these individuals. My father (an attorney) would laugh at you. Repeatedly.
In other words, you have little recourse, once you stupidly give that information out.
More to the point, WHY should you give that information out at all? Why is this even part of the Real ID system? EDIT: And, why are you defending it?I guess jokes are beyond you.
Oooooh... you're being
funny
. Why should I take any of the rest of your argument seriously, then?
And I'm defending it because it's the most logical implementation with regards to time. It's an email address. It's the least secure and most easily obtained part of your login schema. And because I trust the people I'm giving it to.
The point is, you shouldn't
have to
make yourself any
more vulnerable
, just to link up with friends. Even, ones you trust.
Or have you never, ever, not once in your entire life, found your trust misplaced? Be serious now.
Two-part sequence. You just gave half of your security away. Authenticators are optional.
Anyone without an authenticator has no room to talk about anything, security or privacy-wise.
Your opinion. I may not disagree all that much, but this is only your opinion, and this debate is being conducted on much more objective terms.
Until authenticators are in every Blizzard package sold on store shelves and/or are required for login to every Blizzard account, we can only base our discussion on the weakest implementation of security -- the two-part login you refer to -- as a measure of Blizzard's dedication to protecting our accounts.
Better hope that measly one little password is good enough to resist cracking attempts. Even, brute-force serial-login methods. Because, that's all you've got left, unless you pay an added expense for an authenticator.
Post by
Rilgon
Better hope that measly one little password is good enough to resist cracking attempts. Even, brute-force serial-login methods.
You mean the ones that the Blizzard authentication servers can detect and lock down your account for?
(Had it happen one night when I was drunk. That was fun explaining to a CS representative.)
Post by
Onijitsu
Better hope that measly one little password is good enough to resist cracking attempts. Even, brute-force serial-login methods.
You mean the ones that the Blizzard authentication servers can detect and lock down your account for?
(Had it happen one night when I was drunk. That was fun explaining to a CS representative.)
So you're admitting that people can be victimized by someone attempting to crack their Blizzard account. And, that even if the hacker may not have succeeded, they would still be victimized by their account being locked?
Sounds like a very simple means of taking revenge upon someone. Hrm.... Which side of the argument are you on, again?
Post by
Rilgon
You can remember an email given to you god only knows how long ago? Better memory than mine. *shrug*
Post by
seebs
You can remember an email given to you god only knows how long ago? Better memory than mine. *shrug*
Remember? I have logs. :)
Post by
524425
This post was from a user who has deleted their account.
Post by
Rilgon
I'm defending it because the implementation we have now, while it has flaws, is still quite usable.
Having used it - both in the SC2 beta, the PTR, and now on live, I'm so enraptured with the features that I'd rather the system be pushed out now - with its "flaws" - and allow me to use it, than to have it pushed even further back in development so that every perceived flaw can be repaired.
Remember, they had to have this active, at the very least, by Starcraft 2's release date of July 27th. Better that it be active now so that it can be test-driven and flaws and concerns can be pointed out and worked out as development time allows than to push this back even further and possibly miss the SC2 release date.
Post by
466163
This post was from a user who has deleted their account.
Post by
Atago
Will not use it now or ever
Post by
368807
This post was from a user who has deleted their account.
Post Reply
You are not logged in. Please
log in
to post a reply or
register
if you don't already have an account.