x2424x Posted March 21, 2015 Report Posted March 21, 2015 remove change e-mail option (it's too easy to change) -if i played on a computer with keylogger, there will be 0 chance to recover my account. don't remove change e-mail but add some security questions like "secret Q & A" to change email. i played on this server recently, and i enjoyed it. but account security is really poor. if a player don't have own PC.
Aerofox Posted March 21, 2015 Report Posted March 21, 2015 (edited) Some internet cafes are trustworthy and professional, some are not. You just gotta play on the proper ones.I played on an internet cafe with a friend older than me during my first few months and he never tried hacking my account, not even once. Edited March 21, 2015 by Aerofox
Rayray Posted March 21, 2015 Report Posted March 21, 2015 What I used to do when I was thinking that the Internet cafe I play to have a keylogger 1. Open up notepad 2. type a bunch of random characters and numbers 3. I copy and paste one character at a time. Example: I type in notepad this :qwertyuiopasdfghjklzxcvbnm1234567890. My password is let us say forsaken. so i just highlight one letter, right click, copy, go to fRO window, paste then repeat. I know it takes too long but it's better than nothing. And I only play in an internet cafe when it was needed and that is the only choice.
x2424x Posted March 21, 2015 Author Report Posted March 21, 2015 What I used to do when I was thinking that the Internet cafe I play to have a keylogger 1. Open up notepad 2. type a bunch of random characters and numbers 3. I copy and paste one character at a time. Example: I type in notepad this :qwertyuiopasdfghjklzxcvbnm1234567890. My password is let us say forsaken. so i just highlight one letter, right click, copy, go to fRO window, paste then repeat. I know it takes too long but it's better than nothing. And I only play in an internet cafe when it was needed and that is the only choice. but doing that is too risky. you don't know someone is watching you. and typing your password in notepad is not a good idea since you're exposing it. right?. and keylogger also determine where did you use copy and paste, I hope GM gonna read this post, and do something with our account security. Some internet cafes are trustworthy and professional, some are not. that's it bro. i played on different shops. that's why i want fro to improve their account security system :D
Rayray Posted March 23, 2015 Report Posted March 23, 2015 but doing that is too risky. you don't know someone is watching you. and typing your password in notepad is not a good idea since you're exposing it. right?. and keylogger also determine where did you use copy and paste, I hope GM gonna read this post, and do something with our account security. that's it bro. i played on different shops. that's why i want fro to improve their account security system :D Yeah sadly new keyloggers can detect those(played back then in 2007 in internet cafes). The easiest solution of course is not to play in an internet cafe. Not sure what would be the side effect of removing the change email, I for one used it on one of my accounts due to the fact that yahoomail have the worst email security ever, so i had to change it. I am also doubtful if the control panel used by fRO can make secret questions an available field when signing up. That also mean that every account has to login and make a secret question too. The last thing i did back then was to actually remove the keyloggers before playing. This is rather cumbersome though.
theanother Posted March 23, 2015 Report Posted March 23, 2015 never ever play fro in a computer shop if your afraid to get hack, if your responsibility not the game nor gm's.
x2424x Posted March 23, 2015 Author Report Posted March 23, 2015 Yeah sadly new keyloggers can detect those(played back then in 2007 in internet cafes). The easiest solution of course is not to play in an internet cafe. Not sure what would be the side effect of removing the change email, I for one used it on one of my accounts due to the fact that yahoomail have the worst email security ever, so i had to change it. I am also doubtful if the control panel used by fRO can make secret questions an available field when signing up. That also mean that every account has to login and make a secret question too. The last thing i did back then was to actually remove the keyloggers before playing. This is rather cumbersome though. maybe they can add special code thing before you can change the e-mail address :3 or they'll send a confirmation message(link) to that email to change it. (Like when activating an account). scenarioA i want to change my email. from [email protected] to [email protected] but before it will completely change the email, a confirmation link will be sent to [email protected] scenarioB i want to change my email. from [email protected] to [email protected] but before it will completely change the email, i need to fill up a form that contains personal info's. fRo is a verygood server. and a good server must have good security :D never ever play fro in a computer shop if your afraid to get hack, if your responsibility not the game nor gm's. i think you don't understand why i suggest this. this is not for my own. this for all of us. not all players are playing at home.
Sensation Posted March 24, 2015 Report Posted March 24, 2015 I think the key here would be two factor authentication. However, since this depends both on the client and the server configuration, it may be hard to implement. As no clients with the features that we're currently using exists any more with that up-to-date feature (pincode system by clicking numbers). Due to this, even though I completely support this suggestion/idea, I believe this is impossible unless the administration team will make a major revamp of the way all the monsters and items are processed by the client and make an update to the lua-system.
