Darkhaven
PPT Pusher/Fightmander
There’s this crazy rumor going around that SMS is going to be a future requirement for future guild wars 2 accounts, I know its only a requirement for free to play if you want to mail stuff, but I am hoping that you at Anet are not serious about forcing future gw2 purchasers to use such a feature as SMS. Cause lets get some facts straight not everyone has SMS. Realistically such a thing is not even in logical sense a good idea of forcing onto future players.
From the SMS blog post
“So sometime in the coming months we’ll add a restriction to newly created accounts, preventing gold and items from being mailed off the account (thus being potentially looted off the account) until the account is first secured with either a phone number or an authenticator. We’ll let you know when we’re ready to start that, and again, this will apply only to new accounts created after that date.”
It’s not a rumor.
https://forum-en.gw2archive.eu/forum/info/news/SMS-Restrictions-and-New-Accounts/first#post5424976
Also they said:
If you don’t have a phone number you can still use the Google Authenticator option to secure your account with 2 Factor Authentication.
In short, all accounts created AFTER Aug. 28th should have some sort of verification to help keep your account from being hacked.
https://help.guildwars2.com/entries/95445077-Help-with-SMS-Authentication
There’s this crazy rumor going around that SMS is going to be a future requirement for future guild wars 2 accounts, I know its only a requirement for free to play if you want to mail stuff, but I am hoping that you at Anet are not serious about forcing future gw2 purchasers to use such a feature as SMS. Cause lets get some facts straight not everyone has SMS. Realistically such a thing is not even in logical sense a good idea of forcing onto future players.
SMS, automated phone call, or download an open source authenticator software to your computer linked to your account. So the rumor you are talking about is partially false.
SMS alone will never be required. That much is guaranteed because not everyone has a supported device or land line. That is why they have to offer an alternative, which is the authenticator, and authenticators are very simple and open source, so they’ll run on anything.
I’ve always used 3-factor-authentification and can only recommend it. When I had e-mail authentification I once got an e-mail that someone was trying to log in from china. That moment I knew that my password had been hacked (and I changed it immediately). Of course they didn’t know the password for my e-mail account and thus my GW2 account was safe. Nowadays I use the authenticator because it’s easier.
It’s sad that ANet has to force players to use the 3-factor authentification. Everyone who values their account should gladly use the extra security that ANet offers us and recommend to other players to do the same.
I’ve always used 3-factor-authentification and can only recommend it. When I had e-mail authentification I once got an e-mail that someone was trying to log in from china. That moment I knew that my password had been hacked (and I changed it immediately). Of course they didn’t know the password for my e-mail account and thus my GW2 account was safe. Nowadays I use the authenticator because it’s easier.
It’s sad that ANet has to force players to use the 3-factor authentification. Everyone who values their account should gladly use the extra security that ANet offers us and recommend to other players to do the same.
No, on the contrary, it is sad that anet has to force people to use it because it is pointless. Your account wasn’t hacked because you are intelligent and use different passwords for different things. That is exactly what people should be doing.
Email authentication has been a thing since shortly after launch and it works perfectly if you’re not a security moron.
I’ve always used 3-factor-authentification and can only recommend it. When I had e-mail authentification I once got an e-mail that someone was trying to log in from china. That moment I knew that my password had been hacked (and I changed it immediately). Of course they didn’t know the password for my e-mail account and thus my GW2 account was safe. Nowadays I use the authenticator because it’s easier.
It’s sad that ANet has to force players to use the 3-factor authentification. Everyone who values their account should gladly use the extra security that ANet offers us and recommend to other players to do the same.
No, on the contrary, it is sad that anet has to force people to use it because it is pointless. Your account wasn’t hacked because you are intelligent and use different passwords for different things. That is exactly what people should be doing.
Email authentication has been a thing since shortly after launch and it works perfectly if you’re not a security moron.
That’s not quite true. The extra authentication doesn’t just guard against a user’s poor security compromising their account, it also guards against a security-conscious user being compromised if their email provider gets hacked.
They would be stopping so many potential players if they did this. It’s a bad move all around.
I couldn’t create a dummy AOL mail account (to tryout P4F) without giving them an SMS number, no alternative. At least here we can still use authenticators.
They would be stopping so many potential players if they did this. It’s a bad move all around.
No.
They would be stopping so many potential players if they did this. It’s a bad move all around.
Maybe ANet could offer an alternative to those that don’t want to secure their account. If the account gets hacked, they pay all Support’s expenses, the cost of the staff’s time to recover their account and reset it to before the hack. That sounds fair doesn’t ’it? Since it will be accounts that refuse the security measure that will be costing ANet this money, I bet they would prefer have an option to pay instead.
No?
This is bad news to me. I hate the authenticator, it makes me reverify my account every time, even with the remember this network due to me having a dynamic IP. Its really annoying and now there no avoiding it.
This is bad news to me. I hate the authenticator, it makes me reverify my account every time, even with the remember this network due to me having a dynamic IP. Its really annoying and now there no avoiding it.
Are you not on an always on internet connection? It is highly unusual for isps to have such a short lease on an IP address for their customers for always on internet. Who is your ISP?
I couldn’t create a dummy AOL mail account (to tryout P4F) without giving them an SMS number, no alternative. At least here we can still use authenticators.
I use google voice to confirm sms messages. you can make free calls and texts with google voice.
You do need to verify it atleast once with a cellphone though. Afterwards you can call and text as much as you like (US residents only)
This is bad news to me. I hate the authenticator, it makes me reverify my account every time, even with the remember this network due to me having a dynamic IP. Its really annoying and now there no avoiding it.
Are you not on an always on internet connection? It is highly unusual for isps to have such a short lease on an IP address for their customers for always on internet. Who is your ISP?
No, in Germany and most european countries it’s common that the ip changes every 24 hours. The router will loose it’s connection (mostly around 2 or 3 in the morning) and reconnect with a new IP address. This is to ensure privacy. No person can be identified just by knowing their IP address (except if the police forces the provider to hand out the information).
(edited by BunjiKugashira.9754)
New, or free, accounts are limited.
Without SMS, accounts are limited.
Coming up next, without a GW2 tattoo on right hand accounts will be limited.
Coming up next, without a GW2 tattoo on right hand accounts will be limited.
This hand of mine is burning red …
It’s one thing to have and promote the option, it’s another to force it. While the intent is good, the outcome will probably not be.
It’s not a terrible idea, what is a terrible idea though is needing authetication to withdraw from a guild bank. People have personal guilds for storing things, and probably don’t want to go find their phone every time they plan to withdraw something.
I’ll just add a little clarification just in case, because I have noticed that some people do not know what SMS is.
SMS is the very basic text message that is a basic function in every mobile phone.
It’s not a terrible idea, what is a terrible idea though is needing authetication to withdraw from a guild bank. People have personal guilds for storing things, and probably don’t want to go find their phone every time they plan to withdraw something.
It’s not everytime you withdraw from the guild bank. The guild bank is locked until you set up a SMS/Authenicator on a new account. Then it’s unlocked and you withdraw from it as normal.
Effective at 11:59 pm Pacific Time on August 28, 2015, all newly-created accounts will have SMS restrictions. These restrictions mean that you will not be able to use in-game mail to send items or gold, and you will be unable to access guild vaults. If you wish to eliminate these restrictions, simply add SMS or an authenticator to your account and the restrictions will be removed. Account created prior to August 28 will not experience these restrictions.
Are you not on an always on internet connection? It is highly unusual for isps to have such a short lease on an IP address for their customers for always on internet. Who is your ISP?
No, in Germany and most european countries it’s common that the ip changes every 24 hours. The router will loose it’s connection (mostly around 2 or 3 in the morning) and reconnect with a new IP address. This is to ensure privacy. No person can be identified just by knowing their IP address (except if the police forces the provider to hand out the information).
Yes this. Im in the UK and use BT as my ISP. It resets at 2am every couple of days. Its possible to change to a static IP using 3rd party programs but its alot of effort for 1 game as my ISP only offers static IPs to Businesses afaik
What if someone steals my phone? The thief will receive my SMS instead of me.
They should add a requirement to make a photo or video of the phone receiving the SMS and upload it to GW2 website, in order to confirm we are in possession of the phone on that specific moment.
What if a friend can take my phone for a few moments while I am on a club/pub/bar/restaurant? In this case he/she can see my SMS messages. ArenaNet needs to also add phone call authentication with voice recognition to confirm I am indeed the owner of the phone and number.
What if my twin brother can see my SMS messages and can imitate my voice for authentication recognition? ArenaNet needs to urgently add a fingerprint authentication for smartphones and tables, to know I am the customer with that account and phone.
On the other side, what if I am in debt on some moneylender and to punish me, that moneylender decides to cut my finger, take my smartphone, and use it all to empty my GW2 account for the debt. In this case they should also add a retinal scan for smartphone, to really proove nobody has stolen my account, phone, voice and fingerprint.
I still don’t know what should be done if I stumble on the stairs and loose one of my eyes. My GW2 account can be stolen because someone gets access to the retinal scan. In my opinion this is exactly why securing an account is extremely difficult. All these procedures must be put in place to protect the customers and their ingame fun.
(edited by Acrisor.8097)
- "Cause lets get some facts straight not everyone has SMS. " – seriously, whoever with access to a gaming pc does not have access to a cellphone?
- “Realistically such a thing is not even in logical sense a good idea of forcing onto future players.” What do “realistically” and “in logical sense” signify here? Did you try to put some fancy terms into your post to give it more weight?
New, or free, accounts are limited.
Without SMS, accounts are limited.Coming up next, without a GW2 tattoo on right hand accounts will be limited.
Dumbledore looked at Snape’s arm.
“Your mark.” said Dumbledore looking down at the now glowing tattoo.
“I’m sorry, I have to go.” said Snape.
“I understand” said Dumbledore, “You have a raid.”
I’ll just add a little clarification just in case, because I have noticed that some people do not know what SMS is.
SMS is the very basic text message that is a basic function in every mobile phone.
True but apparently not all players want to have a mobile phone.
I’ll just add a little clarification just in case, because I have noticed that some people do not know what SMS is.
SMS is the very basic text message that is a basic function in every mobile phone.
True but apparently not all players want to have a mobile phone.
And, of course, you need no mobile phone to use the SMS option, as you can specify voice for landlines.
- "Cause lets get some facts straight not everyone has SMS. " – seriously, whoever with access to a gaming pc does not have access to a cellphone?
- “Realistically such a thing is not even in logical sense a good idea of forcing onto future players.” What do “realistically” and “in logical sense” signify here? Did you try to put some fancy terms into your post to give it more weight?
I have a cell phone but I had text messaging turned off. I never use text messaging and I refuse to pay for other people sending me text messages, especially the telemarketers. So SMS isn’t an option for me.
I’ll just add a little clarification just in case, because I have noticed that some people do not know what SMS is.
SMS is the very basic text message that is a basic function in every mobile phone.
True but apparently not all players want to have a mobile phone.
And, of course, you need no mobile phone to use the SMS option, as you can specify voice for landlines.
Not all landline nets are capable of sending/recieving sms over landlines. Also not all phones for landlines are capable of sending/recieving sms.
So if this is made something that is required of all users, they should add a third option.
An easy and reletive cheap system is where you recieve a phonecall and an automated voice reads your code out loud.
I do agree that two way authentification is needed and important, but it has to be in such a way that everyone can use it
I’ll just add a little clarification just in case, because I have noticed that some people do not know what SMS is.
SMS is the very basic text message that is a basic function in every mobile phone.
True but apparently not all players want to have a mobile phone.
And, of course, you need no mobile phone to use the SMS option, as you can specify voice for landlines.
Not all landline nets are capable of sending/recieving sms over landlines. Also not all phones for landlines are capable of sending/recieving sms.
So if this is made something that is required of all users, they should add a third option.
An easy and reletive cheap system is where you recieve a phonecall and an automated voice reads your code out loud.
I do agree that two way authentification is needed and important, but it has to be in such a way that everyone can use it
It is not SMS on phone line, it is a voice call that speaks the code you need to enter.
There are 3 options:
1- SMS
2- Voice call on phone line
3- Authenticator program installed on your computer.
So yes, it is already done in a way that everybody can use it.
I’ll just add a little clarification just in case, because I have noticed that some people do not know what SMS is.
SMS is the very basic text message that is a basic function in every mobile phone.
True but apparently not all players want to have a mobile phone.
And, of course, you need no mobile phone to use the SMS option, as you can specify voice for landlines.
Not all landline nets are capable of sending/recieving sms over landlines. Also not all phones for landlines are capable of sending/recieving sms.
So if this is made something that is required of all users, they should add a third option.
An easy and reletive cheap system is where you recieve a phonecall and an automated voice reads your code out loud.
I do agree that two way authentification is needed and important, but it has to be in such a way that everyone can use it
It is not SMS on phone line, it is a voice call that speaks the code you need to enter.
There are 3 options:
1- SMS
2- Voice call on phone line
3- Authenticator program installed on your computer.
And all 3 options are kitten.
1- Anet now has my cell phone number.
2- Anet now has my landline number.
3- I’ve now been forced to install shady software because I don’t want to give a company my phone number.
I’ll just add a little clarification just in case, because I have noticed that some people do not know what SMS is.
SMS is the very basic text message that is a basic function in every mobile phone.
True but apparently not all players want to have a mobile phone.
And, of course, you need no mobile phone to use the SMS option, as you can specify voice for landlines.
Not all landline nets are capable of sending/recieving sms over landlines. Also not all phones for landlines are capable of sending/recieving sms.
So if this is made something that is required of all users, they should add a third option.
An easy and reletive cheap system is where you recieve a phonecall and an automated voice reads your code out loud.
I do agree that two way authentification is needed and important, but it has to be in such a way that everyone can use it
It is not SMS on phone line, it is a voice call that speaks the code you need to enter.
There are 3 options:
1- SMS
2- Voice call on phone line
3- Authenticator program installed on your computer.And all 3 options are kitten.
1- Anet now has my cell phone number.
2- Anet now has my landline number.
3- I’ve now been forced to install shady software because I don’t want to give a company my phone number.
1 and 2: So they have your phone number. They don’t do anything with it except to send you the code. It would be highly illegal for them to go against their privacy policy.
3- The authenticator is far from being shady. There is nothing shady about it. Also hard to be shady when the program is open source, which means that if it was shady, people would have already made it big news as being shady, or since it is open source taken the shady stuff out of it. In other words, the authenticator is not shady at all.
When a legit company states they will not sell your information, they will not sell your information, otherwise they would be breaking laws. I never get any telemarketing calls on my phone that I didn’t authorize. I have given so many companies my phone number, but I only give it to ones that have a privacy policy of not selling my information. Arenanet/NCsoft will not sell your phone number to anybody, it is against their privacy policy and the agreements they made with the customer when setting up the system.
oh, also, a false positive from a crappy anti virus is also not a valid reason to call the authenticator as being shady. I once used an antivirus that called the Guildwars 2 file you download to install the game as malware, and that file came right from Arenanet.
oh, also, a false positive from a crappy anti virus is also not a valid reason to call the authenticator as being shady. I once used an antivirus that called the Guildwars 2 file you download to install the game as malware, and that file came right from Arenanet.
Even more reason to not share my phone number with them or install shady software they recommend. Thanks for confirmation.
I’ll just add a little clarification just in case, because I have noticed that some people do not know what SMS is.
SMS is the very basic text message that is a basic function in every mobile phone.
True but apparently not all players want to have a mobile phone.
And, of course, you need no mobile phone to use the SMS option, as you can specify voice for landlines.
Not all landline nets are capable of sending/recieving sms over landlines. Also not all phones for landlines are capable of sending/recieving sms.
So if this is made something that is required of all users, they should add a third option.
An easy and reletive cheap system is where you recieve a phonecall and an automated voice reads your code out loud.
I do agree that two way authentification is needed and important, but it has to be in such a way that everyone can use it
You do know that you can use the Authenticator for two way authentification? And you can use WinAuth for that. WinAuth runs on any Windows-Computer. And now don’t tell me someone who’s playing GW2 might not have a Computer…
oh, also, a false positive from a crappy anti virus is also not a valid reason to call the authenticator as being shady. I once used an antivirus that called the Guildwars 2 file you download to install the game as malware, and that file came right from Arenanet.
Even more reason to not share my phone number with them or install shady software they recommend. Thanks for confirmation.
You do not understand how antivirus work do you? False positives are not uncommon, and almost usually happen on the crappy ones or the free ones.
And what does your phone number have anything to do with a false positive from a crappy or free malware protection system?
Again, there is nothing shady about it. Where are you even getting the information that it is shady? Because the only person I saw that called it shady is because their free malware protection system said it was, but never mind that better quality and not free malware protection systems do not give a false positive on it. And again, it is open source, which means anybody can look through that code and can find anything shady about it, which nobody has found any. So the fact is, calling it shady is an outright lie with absolutely no proof to back it up.
oh, also, a false positive from a crappy anti virus is also not a valid reason to call the authenticator as being shady. I once used an antivirus that called the Guildwars 2 file you download to install the game as malware, and that file came right from Arenanet.
Even more reason to not share my phone number with them or install shady software they recommend. Thanks for confirmation.
You do not understand how antivirus work do you? False positives are not uncommon, and almost usually happen on the crappy ones or the free ones.
And what does your phone number have anything to do with a false positive from a crappy or free malware protection system?
Again, there is nothing shady about it. Where are you even getting the information that it is shady? Because the only person I saw that called it shady is because their free malware protection system said it was, but never mind that better quality and not free malware protection systems do not give a false positive on it. And again, it is open source, which means anybody can look through that code and can find anything shady about it, which nobody has found any. So the fact is, calling it shady is an outright lie with absolutely no proof to back it up.
It is shady because it doesn’t save the code… What are you talking about?
More importantly giving my phone number to a company would have to be one of the dumbest things I’d ever do in my life if I did it.
I’ll just add a little clarification just in case, because I have noticed that some people do not know what SMS is.
SMS is the very basic text message that is a basic function in every mobile phone.
True but apparently not all players want to have a mobile phone.
And, of course, you need no mobile phone to use the SMS option, as you can specify voice for landlines.
Not all landline nets are capable of sending/recieving sms over landlines. Also not all phones for landlines are capable of sending/recieving sms.
So if this is made something that is required of all users, they should add a third option.
An easy and reletive cheap system is where you recieve a phonecall and an automated voice reads your code out loud.
I do agree that two way authentification is needed and important, but it has to be in such a way that everyone can use it
Pretty sure ‘voice’ is not text-based, as it is, well, a voice. The ‘easy and reletive(sic) cheap system’ you post about is the option that ArenaNet offers (it’s the voice one mentioned).
Good luck.
oh, also, a false positive from a crappy anti virus is also not a valid reason to call the authenticator as being shady. I once used an antivirus that called the Guildwars 2 file you download to install the game as malware, and that file came right from Arenanet.
Even more reason to not share my phone number with them or install shady software they recommend. Thanks for confirmation.
You do not understand how antivirus work do you? False positives are not uncommon, and almost usually happen on the crappy ones or the free ones.
And what does your phone number have anything to do with a false positive from a crappy or free malware protection system?
Again, there is nothing shady about it. Where are you even getting the information that it is shady? Because the only person I saw that called it shady is because their free malware protection system said it was, but never mind that better quality and not free malware protection systems do not give a false positive on it. And again, it is open source, which means anybody can look through that code and can find anything shady about it, which nobody has found any. So the fact is, calling it shady is an outright lie with absolutely no proof to back it up.
It is shady because it doesn’t save the code… What are you talking about?
More importantly giving my phone number to a company would have to be one of the dumbest things I’d ever do in my life if I did it.
1- Why would it need to save the code?
What am I talking about? I am saying that it is not shady because there is nothing shady about it. It doesn’t do anything else other than give you a code to enter when ever you log on from a different network range than what you have authorized before. There is nothing shady in the program, it is impossible to hide anything shady in the program because it is open source. Do you even know what “Open Source” is? I am guess you do not, and are probably someone what computer illiterate and that is why you feel the authenticator is shady because you do not understand it.
2- Why would it be dumb to give your number to them?
So far I have not seen any logical arguments coming from you. You make baseless accusations, and give no reasoning for anything.
I’ll just add a little clarification just in case, because I have noticed that some people do not know what SMS is.
SMS is the very basic text message that is a basic function in every mobile phone.
True but apparently not all players want to have a mobile phone.
And, of course, you need no mobile phone to use the SMS option, as you can specify voice for landlines.
Not all landline nets are capable of sending/recieving sms over landlines. Also not all phones for landlines are capable of sending/recieving sms.
So if this is made something that is required of all users, they should add a third option.
An easy and reletive cheap system is where you recieve a phonecall and an automated voice reads your code out loud.
I do agree that two way authentification is needed and important, but it has to be in such a way that everyone can use it
You do know that you can use the Authenticator for two way authentification? And you can use WinAuth for that. WinAuth runs on any Windows-Computer. And now don’t tell me someone who’s playing GW2 might not have a Computer…
Using winauth is NOT true two way authentification and has the same issue as an email. It is run on the same computer you play on. So if someone’s security is breeched, it is just as bad as recieving the email. The only advantage is that winauth on itself is much more secure then email.
Two way authentification means you are using two physical devices, so a potential hacker has to hack his way into both.
And all 3 options are kitten.
1- Anet now has my cell phone number.
2- Anet now has my landline number.
3- I’ve now been forced to install shady software because I don’t want to give a company my phone number.
I’ll be honest with you.
I can understand that it is not nice that you are forced to give your phone number. But having the game poluted by goldsellers cause people are using insecure measures are not nice either. So if you don’t use any two-way authentification and you personally don’t care bout your own security and getting hacked, I do believe, the harm done to the community still justifies it.
So assuming (which really is going to be the case) that two way authentication IS going to be required (cause it is needed for the community as a whole). What alternatives that sattisfy you are valid? Keep in mind it has to be two ways (so two devices used).
So the current system of an email is not cutting it.
Also if non of the offered ways are a valid option for you, I think it would be perfectly ok to discuss it with support. I even can imagine that in certain occasions they are willing to bypass the rule (for example after you have proven to use very secure passwords and different passwords on both your email and game, and have shown your other measures like firewalls are up and running)
Or that they give you some kind of compensation (depending on the age of your account and individual purchases) if you have very strong reasons to quit playing over this.
Bottom line is that 2 way authentication is needed for the game and should be the standard. In extreme situations support is always there to give personalised solutions.
I’ll just add a little clarification just in case, because I have noticed that some people do not know what SMS is.
SMS is the very basic text message that is a basic function in every mobile phone.
True but apparently not all players want to have a mobile phone.
And, of course, you need no mobile phone to use the SMS option, as you can specify voice for landlines.
Not all landline nets are capable of sending/recieving sms over landlines. Also not all phones for landlines are capable of sending/recieving sms.
So if this is made something that is required of all users, they should add a third option.
An easy and reletive cheap system is where you recieve a phonecall and an automated voice reads your code out loud.
I do agree that two way authentification is needed and important, but it has to be in such a way that everyone can use it
You do know that you can use the Authenticator for two way authentification? And you can use WinAuth for that. WinAuth runs on any Windows-Computer. And now don’t tell me someone who’s playing GW2 might not have a Computer…
Using winauth is NOT true two way authentification and has the same issue as an email. It is run on the same computer you play on. So if someone’s security is breeched, it is just as bad as recieving the email. The only advantage is that winauth on itself is much more secure then email.
Two way authentification means you are using two physical devices, so a potential hacker has to hack his way into both.
And all 3 options are kitten.
1- Anet now has my cell phone number.
2- Anet now has my landline number.
3- I’ve now been forced to install shady software because I don’t want to give a company my phone number.I’ll be honest with you.
I can understand that it is not nice that you are forced to give your phone number. But having the game poluted by goldsellers cause people are using insecure measures are not nice either. So if you don’t use any two-way authentification and you personally don’t care bout your own security and getting hacked, I do believe, the harm done to the community still justifies it.So assuming (which really is going to be the case) that two way authentication IS going to be required (cause it is needed for the community as a whole). What alternatives that sattisfy you are valid? Keep in mind it has to be two ways (so two devices used).
So the current system of an email is not cutting it.Also if non of the offered ways are a valid option for you, I think it would be perfectly ok to discuss it with support. I even can imagine that in certain occasions they are willing to bypass the rule (for example after you have proven to use very secure passwords and different passwords on both your email and game, and have shown your other measures like firewalls are up and running)
Or that they give you some kind of compensation (depending on the age of your account and individual purchases) if you have very strong reasons to quit playing over this.Bottom line is that 2 way authentication is needed for the game and should be the standard. In extreme situations support is always there to give personalised solutions.
Game polluted by gold sellers? How often do you actually run into gold sellers? I run into one or two once a week or so. They usually spam me in whispers and a quick block solves the problem.
Instead of artificially making people think their accounts are safe through shady practices like collecting peoples phone numbers, maybe anet should be teaching people proper security. Like requiring better passwords and encouraging different passwords for different things.
This is just going to replace the “gold seller” support tickets with “I lost my winauth code, I can has game back nao?!” support tickets.
Anyone else have the sneaking suspicion that some people are opposed to SMS because it will make it harder for them to steal other people’s accounts?
Maybe I’m just a cynic, but when you can’t form a coherent reason for disliking something it always makes me think the worst about the real reason you are opposed to it.
@mercury ranique: If someone should gain access to my computer I have a way bigger problem than a compromised game-account. The only step left then is to completely delete everything, format the hard drive and reinstall the operating system.
The most common cause of compromised accounts is not hackers gaining access to PCs, but people using the same username and passwort that they use for the game on some shady websites. Or the hackers just randomly trying out passwords. Actually hacking a PC is a lot more work than simply stealing or guessing passwords from people. Especially if you have a website that offers gamerelated stuff and requires people to create an account the hackers don’t have to do anything besides using the data people give them.
Anyone else have the sneaking suspicion that some people are opposed to SMS because it will make it harder for them to steal other people’s accounts?
Maybe I’m just a cynic, but when you can’t form a coherent reason for disliking something it always makes me think the worst about the real reason you are opposed to it.
No, I’m opposed to it because giving my phone number to corporations is contrary to security and safe internet use. Which it is allegedly promoting. Just like I won’t give out my phone number to random people on the street. I don’t need people I don’t know calling me when anet sells my phone number. You can make baseless unproveable claims that they don’t sell phone numbers but that is meaningless to me and to anybody who knows better than to trust a corporation with their personal information.
I am also opposed to the alternative using winauth because well winauth is a piece of crap.
I’ll just add a little clarification just in case, because I have noticed that some people do not know what SMS is.
SMS is the very basic text message that is a basic function in every mobile phone.
True but apparently not all players want to have a mobile phone.
And, of course, you need no mobile phone to use the SMS option, as you can specify voice for landlines.
Not all landline nets are capable of sending/recieving sms over landlines. Also not all phones for landlines are capable of sending/recieving sms.
So if this is made something that is required of all users, they should add a third option.
An easy and reletive cheap system is where you recieve a phonecall and an automated voice reads your code out loud.
I do agree that two way authentification is needed and important, but it has to be in such a way that everyone can use it
You do know that you can use the Authenticator for two way authentification? And you can use WinAuth for that. WinAuth runs on any Windows-Computer. And now don’t tell me someone who’s playing GW2 might not have a Computer…
Using winauth is NOT true two way authentification and has the same issue as an email. It is run on the same computer you play on. So if someone’s security is breeched, it is just as bad as recieving the email. The only advantage is that winauth on itself is much more secure then email.
Two way authentification means you are using two physical devices, so a potential hacker has to hack his way into both.
And all 3 options are kitten.
1- Anet now has my cell phone number.
2- Anet now has my landline number.
3- I’ve now been forced to install shady software because I don’t want to give a company my phone number.I’ll be honest with you.
I can understand that it is not nice that you are forced to give your phone number. But having the game poluted by goldsellers cause people are using insecure measures are not nice either. So if you don’t use any two-way authentification and you personally don’t care bout your own security and getting hacked, I do believe, the harm done to the community still justifies it.So assuming (which really is going to be the case) that two way authentication IS going to be required (cause it is needed for the community as a whole). What alternatives that sattisfy you are valid? Keep in mind it has to be two ways (so two devices used).
So the current system of an email is not cutting it.Also if non of the offered ways are a valid option for you, I think it would be perfectly ok to discuss it with support. I even can imagine that in certain occasions they are willing to bypass the rule (for example after you have proven to use very secure passwords and different passwords on both your email and game, and have shown your other measures like firewalls are up and running)
Or that they give you some kind of compensation (depending on the age of your account and individual purchases) if you have very strong reasons to quit playing over this.Bottom line is that 2 way authentication is needed for the game and should be the standard. In extreme situations support is always there to give personalised solutions.
Game polluted by gold sellers? How often do you actually run into gold sellers? I run into one or two once a week or so. They usually spam me in whispers and a quick block solves the problem.
Instead of artificially making people think their accounts are safe through shady practices like collecting peoples phone numbers, maybe anet should be teaching people proper security. Like requiring better passwords and encouraging different passwords for different things.
This is just going to replace the “gold seller” support tickets with “I lost my winauth code, I can has game back nao?!” support tickets.
There is nothing shady about asking for your phone number. They have an agreement with you to not sell your personal information. They are bound by law to not sell your personal information with that agreement.
So unless you can actually come up with some actual evidence of different things being shady, stop trying to spread misinformation.
I’ll just add a little clarification just in case, because I have noticed that some people do not know what SMS is.
SMS is the very basic text message that is a basic function in every mobile phone.
True but apparently not all players want to have a mobile phone.
And, of course, you need no mobile phone to use the SMS option, as you can specify voice for landlines.
Not all landline nets are capable of sending/recieving sms over landlines. Also not all phones for landlines are capable of sending/recieving sms.
So if this is made something that is required of all users, they should add a third option.
An easy and reletive cheap system is where you recieve a phonecall and an automated voice reads your code out loud.
I do agree that two way authentification is needed and important, but it has to be in such a way that everyone can use it
You do know that you can use the Authenticator for two way authentification? And you can use WinAuth for that. WinAuth runs on any Windows-Computer. And now don’t tell me someone who’s playing GW2 might not have a Computer…
Using winauth is NOT true two way authentification and has the same issue as an email. It is run on the same computer you play on. So if someone’s security is breeched, it is just as bad as recieving the email. The only advantage is that winauth on itself is much more secure then email.
Two way authentification means you are using two physical devices, so a potential hacker has to hack his way into both.
And all 3 options are kitten.
1- Anet now has my cell phone number.
2- Anet now has my landline number.
3- I’ve now been forced to install shady software because I don’t want to give a company my phone number.I’ll be honest with you.
I can understand that it is not nice that you are forced to give your phone number. But having the game poluted by goldsellers cause people are using insecure measures are not nice either. So if you don’t use any two-way authentification and you personally don’t care bout your own security and getting hacked, I do believe, the harm done to the community still justifies it.So assuming (which really is going to be the case) that two way authentication IS going to be required (cause it is needed for the community as a whole). What alternatives that sattisfy you are valid? Keep in mind it has to be two ways (so two devices used).
So the current system of an email is not cutting it.Also if non of the offered ways are a valid option for you, I think it would be perfectly ok to discuss it with support. I even can imagine that in certain occasions they are willing to bypass the rule (for example after you have proven to use very secure passwords and different passwords on both your email and game, and have shown your other measures like firewalls are up and running)
Or that they give you some kind of compensation (depending on the age of your account and individual purchases) if you have very strong reasons to quit playing over this.Bottom line is that 2 way authentication is needed for the game and should be the standard. In extreme situations support is always there to give personalised solutions.
Game polluted by gold sellers? How often do you actually run into gold sellers? I run into one or two once a week or so. They usually spam me in whispers and a quick block solves the problem.
Instead of artificially making people think their accounts are safe through shady practices like collecting peoples phone numbers, maybe anet should be teaching people proper security. Like requiring better passwords and encouraging different passwords for different things.
This is just going to replace the “gold seller” support tickets with “I lost my winauth code, I can has game back nao?!” support tickets.
There is nothing shady about asking for your phone number. They have an agreement with you to not sell your personal information. They are bound by law to not sell your personal information with that agreement.
So unless you can actually come up with some actual evidence of different things being shady, stop trying to spread misinformation.
LOL bound by law, I can’t even. The level of hilarity. Have fun, I hope the telemarketers at least leave you alone in the middle of the night. Though I doubt it because they’ll probably be calling from some 3rd world country in a different timezone.
3- I’ve now been forced to install shady software because I don’t want to give a company my phone number.
You don’t actually need to install anything. The program you’re using to view this is already capable of working as an authenticator.
Anyone else have the sneaking suspicion that some people are opposed to SMS because it will make it harder for them to steal other people’s accounts?
People somehow managed to fall for the in-game phishing mail, the one where you’re required to type in a long URL. If people can fall for that, they’re going to fall for the same thing that now asks you to enter your code 3 times. 1 code is required to login and 2 more are required to unlink the account.
This thread was about SMS with no exceptions. I can guarantee you that’ll never happen because not everyone has a cellphone or even a landline. There’d be too much backlash for no reason.
Anyone else have the sneaking suspicion that some people are opposed to SMS because it will make it harder for them to steal other people’s accounts?
Maybe I’m just a cynic, but when you can’t form a coherent reason for disliking something it always makes me think the worst about the real reason you are opposed to it.
No, I’m opposed to it because giving my phone number to corporations is contrary to security and safe internet use. Which it is allegedly promoting. Just like I won’t give out my phone number to random people on the street. I don’t need people I don’t know calling me when anet sells my phone number. You can make baseless unproveable claims that they don’t sell phone numbers but that is meaningless to me and to anybody who knows better than to trust a corporation with their personal information.
I am also opposed to the alternative using winauth because well winauth is a piece of crap.
From Arenanet’s privacy policy:
"
(3) How the Personal Information Is Used
Personal Information which we collect for a particular purpose will only be saved and used for that purpose, unless you have agreed to allow us to use it for some other purpose, as described in this Privacy Policy.
"
This means that they are not allowed to use your phonenumber for anything else but the two way authentification. the law requires them to have such a privacy policy and they are not allowed to break it.
In the end, it is a matter of trust. they say they will not call you, if you dont trust them on their word, you should not play this game at all. It is no different as a bank. If you don’t trust them to give you back your money, you should not use their services.
Not affiliated with ArenaNet or NCSOFT. No support is provided.
All assets, page layout, visual style belong to ArenaNet and are used solely to replicate the original design and preserve the original look and feel.
Contact /u/e-scrape-artist on reddit if you encounter a bug.