Idea for GW2 regarding Xunlai/storage Chest

I think in GW2 the storage should require like a password or a keycode that the player setups that he uses to enter his storage.

might get annoying having to enter it in every time i want to enter storage... might be better to have a login pin or something when u log in if you are worried about hackers, or other people accessing your account.

Yes like just when you login a one time thing that would be good until you log off.

OR, you could just be sure your computer is secure and you have a good password so that getting into your account isn't an issue

that works, but alot of things have a secondary layer of defense in case someone does get in thru the password check. alot of people use the same password for forums/emails/websites etc. and im sure a large portion of GW players arent the best with computer security and such since GW is sorta aimed more towards casual players

This is true, But there is real hackers out there that can bypass the measures in place.

Do you wear a tin foil hat to sleep so the aliens don't read your mind?

Seriously, your paranois is ridiuclous.

yeah i agree. is omeone wants to spend a day hacking my gw account to take my dye or something thats fine lol. Ypu dont honestly believe that if the really really wanted in that your little pin would stop t5hjem?

I too think its a little unnecessary. To get to the point where they had to enter a password on your storage they'd first have to get into your account, and you have a password there. To get to that point, they'd have to get through your firewall etc. Assuming they had the means to do that, having a second password then wouldnt be a problem for them.

I'd find it annoying, myself, anyway, and storage already annoys me, juggling things between mules, storage and who I am playing all the time. If they implemented it, at least they had better make it to be able to toggle the option off as I have never had a security problem.

And the topic goes in Sardelac...

There may not even be items in guild wars 2, there may not be storage, there may be a bank and a stock market. I cant understand the need for assumptions when they havent even relased a screenshot yet.

o.O Are you being serious? What do you think your password is for?

Use lower case, UPPER CASE, Numb3rs inside of the words and maybe some Symb()ls. Then you should be safe.

/notsigned one password is enough.

Played runescape recently? ._.

If they can bypass one password, they can bypass another. If your system's security is so weak, it would be a cake walk to crack a second password. Especially if it is stored locally on the same machine as the first password.

The point of good user security is to have a strong system, while not being obtrusive. This would be distracting, annoying, and a pain in the butt.

/Not signed.

One of the previous posters has it right. Strong-level passwords use numbers, symbols, and chars. like this: p45SW0Ro|

An additional password for a standard storage? No.
And really, if you're one of those people who sucks at password security, use the same email/pass on forums, I doubt very much you aren't going to do the exact same thing for a storage password. Adding more security measures for those who lack or don't use common sense is not a solution.

I can see if there was like a guild storage or even a universal one. 10,15,20 slots to use as regular storage or you can give your buddies a temp password for a one time access to whatever you've put in there. But if they're gonna have storage like that why not just have something like a cross between trade and whisper. If a friend wants to access it or put something in it for you to have a whisper comes up telling you who it is and what they want to do then a button pops up like the trade button and you can press accept or decline.

/notsigned

I agree with most of the comments above. An additional password for storage once you've already provided a password to logon to the game in the first place would add nothing but annoyance.

/notsigned

It would be too annoying for the players that don't give out their e-mails or passwords and don't get phished, and then they can't get hacked.

Yes, real hackers don't need a password to access your account, but they do need at least your e-mail. As long as you only give your e-mail to people you trust, you shouldn't worry about getting hacked.

It would be very tedious, only help a small portion of the community.

/notsigned

I guess, if you put it as an option, like "Would you like your Xunlai Storage to have a 4-digit Passcode? Yes or No?" It would be fine

lol

It was just an idea for extra security.

And many of you assume that I don't know network security and the strength of a password.

Note* wasn't only a few months ago where people claimed that when they purchased eotn online that they got hacked?

smoke some more

Yeah its going to be a rpg with no items at all in it.

LOL

*looks at sticky in Sardelac Sanitarium*

We have a candidate for closure!

I don't buy games online, heck, I hardly buy anything online, having money floating around in the interwebz just doesn't make me feel secure, and most things you buy online, maybe a few dollars cheaper, but you'll save by going to Best Buy, because you don't have to pay any shipping or processing fees.

Even though I don't do online transactions often, I would guess having a storage code wouldn't cause them to not delete all of your PvE characters, which would be a much bigger loss than your stuff in storage (unless you're super rich and have like, 300k+)

Basically, it would be useful to the small percentage of players that aren't secure with their personal information, or the people that trust the Internet is completely safe and secure.

First off, NO ONE has been hacked. Period. People misuse the term. To be hacked implies that there is some way (unknown to everyone else) to bypass the security of a password. The only problem is, if such a workaround did exist, someone would spread the word and it would be discovered on a "Hack" site. Even if they did not, AreaNet would see one IP and/or one MAC address accessing many accounts, and the "Hacker" would be promptly shut down.

People who claim to have been hacked are either lying, or more likely did something stupid to initiate the breakdown in security. People who use bots for instance are at risk since the bot could load a keylogger and send it back to the author. This is why the "No 3rd party apps" warning is on the login screen, for your protection.

Another common way people steal from accounts is by stealing passwords saved in the shortcut. If you have it auto-login with the -password=XXXXX command line parameter, anyone who has access to your PC can view it. Don't save your password if other people in your house, dorm room, office etc can't be trusted.

Weak passwords are common. Use upper and lower case, numbers, letters and symbols, always 15 character+ in count when ever you are able to.

Don't use the same password for multiple logins. If you register on your guild's website with the same email address and password as you used to set up your account, the admin can see all that info. In many cases even forum moderators have access to that. Different passwords are needed for different applications, never use the same one over and over.

Don't share accounts with friends.

again

Don't share accounts with friends.

As of this moment, every alleged hack since GW left alpha has been initiated by an act of user stupidity. Areanet has gone out of their way to warn people about these things. There is simply no code they could write into the game that'll give the user common sense.

That being said, I do support the idea of a more robust security. We have been hack free for a long time, and I don't see any immediate danger under the current system, but more security is always better. There may be an unknown and unforeseen exploit that could compromise an account. The more measures in place against that, the less likely we'll have one.

I think a second password or PIN would be inconvenient and inefficient. I would start by putting in a better hash system, allowing more characters in the password (both quantity and type like "¿ æ â » ½" etc.) I would offer an option to "authenticate" the computer via MAC address or Processor ID, linking your computer to your account. If you get a new computer, you login to the website and reassign it. That would have to be an opt-in thing as many people would never think about it and flood tech support, but at least the option would be there for those of us who choose to use it.

oh wow, i cannot imagine anything more annoying. Totally /notsigned.

There was multiple people that had there accounts stripped of all there stuff and characters deleted in which one of them I know happend to and they don't use bots and are pretty computer savy so to say no one was hacked is bs.

Being I myself am a network admin (ccna qualified) if someone wants to seriously hack then they will try and may even do so. I am quite aware of such things as hash strings and such and even on my home setup I am running ppp with chap so people can't snif the lines but that only covers my end.

To say that anet is fullproof and that it is totally put on the customer is also bs. Not all users are as profecient as some of us and keyloggers just don't come from bot/macro programs but other ways too.

Now onto the home routers people use. These are not real routers and they don't contain half the security of a real router. These home routers are actually gateway switches and they do secure to point but they don't have the security of a real router. I would tell anyone to look at their gateway switch logs and and I bet you will see multiple ip's port scanning you. This is an every day occurence on all networks.

Also I would like to point out being that I have worked for both a canadian and an American DSL company (teletech doing verizon dsl tech support) half the time there is users that have the routers but because they can't get them setup don't use them. You talk to a verizon or bell Canada rep and if there is any issues on the line they will tell the users to remove the routers. I can't even begin to count how many users dont have a router or even a software firewall on their system. A lot of users think that an antivirus system is more then enough.

Regardless even with all that security hackers can get in regardless if they are using a trojan (horse) being a program to hide their keyloggers or other methods.

There is also other threads pertaing to people claiming they got hacked and Gaile in that developers update said that the client got hacked for that mallyx trick.

Nothing is full proof as you think just because you got a fancy password and a cheap gateway switch lol.

The one thing I don't understand is why a password for storage? If my account got hacked, what's in my storage vault would just about be the last thing I'd worry about. The real value is in a shitload characters, which I worked too hard on to see some little hacker punk delete them.

If they're going to set up a second line of defense it also makes no sense to make it another selected-by-the-user password. So far most cases of hacking seem to be just a result of ignorance and negligence on the part of user. Like already said a million times before, a security system doesn't and shouldn't cover stupid behaviour on the part of the user. If you really want to secure your product, the only way is by forcefully reeducating the user on how to properly secure his own computer and I don't see that happening anytime soon...

Maybe your worth is on your characters but there is people like myself that have way more worth inside our storages then across all of our characters.

ecto, gems, weapon collections, some pets come to mind

This post wins.
http://www.guildwarsguru.com/forum/s...php?t=10214062
Close, please.

Why cant your computer and storage be safe? I think its a wonderful idea