These forums have been archived and are now read-only.

The new forums are live and can be found at https://forums.eveonline.com/

EVE General Discussion

 
  • Topic is locked indefinitely.
Previous page12
 

Password Restrictions
Author
Previous Topic Next Topic
Nereni Valacon
RoidRagers
#21 - 2011-10-28 13:41:00 UTC
Sturmwolke wrote:
Nereni Valacon wrote:
The whole idea of convincing people that something is secure when it really isn't is what I find ridiculous. There is at least one scenario that I can think of where a previous password hasn't been compromised, yet still cannot be used: if a player resets their account password (through forgetting it or whatever) then tries to re-apply that password later on to the account, they can't do it under the current system. That's my main concern here, the current password policy isn't a properly thought-out one, and it's not the sort of thing I expect from a computer game.

None of this is to say I'm against better security in EVE: I'm all for real improvements to account security, ones that provide tangible benefits such as two-factor authentication (not difficult to do either, CCP, hint hint). I just don't like this whole 'illusion of security' nonsense that's going on at the moment.


Nothing is secure. Those policies are not there to "convince" people that everything's secure, nor give an illusion that everything's secure.
They're there to mitigate the occurences of unauthorized use, form a multi-barrier blocks and as a general deterrent (to easy hacks).
Being a computer game has nothing to do with what you're implying when personal credit details are at risk.

You need to correct your perception.

Should CCP make an exception to your case, your majesty?


I refuse to debate a point with someone who has to resort to childish name-calling in their responses. Get a real understanding of the issue at hand before spouting mindless garbage, please.
Nereni Valacon
RoidRagers
#22 - 2011-10-28 13:46:40 UTC  |  Edited by: Nereni Valacon
Tanya Fox wrote:
Nereni Valacon wrote:
Sturmwolke wrote:
You forgot to answer the question.


Apologies, I was trying to work it into an edit of my reply.

The whole idea of convincing people that something is secure when it really isn't is what I find ridiculous. There is at least one scenario that I can think of where a previous password hasn't been compromised, yet still cannot be used: if a player resets their account password (through forgetting it or whatever) then tries to re-apply that password later on to the account, they can't do it under the current system. That's my main concern here, the current password policy isn't a properly thought-out one, and it's not the sort of thing I expect from a computer game.
.



Again why use the old one? There's no reason not to use a new one.

Already said people tend to write them down, you soon get used to the new one (in most cases) even if it's 16 characters or longer as long as you use it on a regular basis.


People do write down passwords, but it's certainly not a habit I engage in. I'm more concerned with the fact that preventing the re-use of old passwords is not in any sense a decent security measure, but is really just an inconvenience for the user that provides no benefit whatsoever. I'm resigned to the fact that this is a policy that isn't likely to change, but I still feel it necessary to make my voice heard on the issue. It's just a shame that you can't seem to do that in the EVE community without being personally insulted from multiple angles.
Sturmwolke
#23 - 2011-10-28 20:10:46 UTC  |  Edited by: CCP Navigator
Nereni Valacon wrote:

Sturmwolke wrote:

Should CCP make an exception to your case, your majesty?

I refuse to debate a point with someone who has to resort to childish name-calling in their responses. Get a real understanding of the issue at hand before spouting mindless garbage, please.


There is little to debate in the first place. Those things are implemented for a reason, regardless of your personal arguments on the benefits.
The fact that CCP hadn't implemented a mandatory periodic password expiry policy suggests prior deliberation on the user convenience/ease of use side.

Now, didn't you write (earlier in this thread) "I don't appreciate being forced to live under rules devised to save idiots from themselves".
Previous page12