Guild Wars 2

Centurion.7296:

ham.8209:

Centurion.7296:

Thanks, I’ll change my passwords as well as try to get someone to look at our internet, and right before the person comes then I’ll try to experiment with the settings myself ^-^ Also, Ive made an list of my accounts and their deets (like their passwords and usernames) throughout my life, and this list is on my iPad and on my galaxy s6, what are the chances that they would randomly be hacked and someone know to look at that specific file its stored in?

by chance did it offer you a free mini dragon as well too ??

The bloody forum moderators merged the threads, like I said in my thread, I already signed up and got that dragon.

yeah they did the same thing to me as well with my topic too. and i just got it done and got the new free mini . i will say its legit and free iam there !!

Just a flesh wound.3589:

Killing the forum bug with my l33t forum bug smashing superpower.

you just all kinda busy huh LOL nice to see something working :P

ham.8209:

Just a flesh wound.3589:

Killing the forum bug with my l33t forum bug smashing superpower.

you just all kinda busy huh LOL nice to see something working :P

I was bitten by a radioactive forum post one day and gained forum superpowers. All I can do is try to use these powers for good and not evil. Except when I’m in a bad mood, then those puny mortal forumites need to look out!

Is there a landline option for this. I thought there was supposed to be one, but when i went to look at adding it there was a request for a mobile phone number, and an option for a mobile that didn’t have SMS on it. Landlines weren’t mentioned.

I considered using my mobile but as it is rarely used, I normally spend half an hour trying to remember which pocket I left it in, only to find that in the couple of months since I last used it and forgot to turn it off, the battery has gone flat. And seeing as I can’t see the screen, using it is alway a bit of a problem.

I did look at the desktop authentification system but really there is very little said, ‘download this bit of random software and follow its instructions’ no information about how they work, or even links to the information.

It seems that it assumes that everyone has a smart phone and already knows how everything works. An authenticator to me is a small thing with a button that gives out a random row of numbers that is too small to read. Please try and remember that some of aren’t computer savvy and make all security changes as hand holding as the NPE is.

For the time being I’ll just have to keep telling it to remind me later each time I log in.

Oenanthe.6549:

Is there a landline option for this. I thought there was supposed to be one, but when i went to look at adding it there was a request for a mobile phone number, and an option for a mobile that didn’t have SMS on it. Landlines weren’t mentioned.

I considered using my mobile but as it is rarely used, I normally spend half an hour trying to remember which pocket I left it in, only to find that in the couple of months since I last used it and forgot to turn it off, the battery has gone flat. And seeing as I can’t see the screen, using it is alway a bit of a problem.

I did look at the desktop authentification system but really there is very little said, ‘download this bit of random software and follow its instructions’ no information about how they work, or even links to the information.

It seems that it assumes that everyone has a smart phone and already knows how everything works. An authenticator to me is a small thing with a button that gives out a random row of numbers that is too small to read. Please try and remember that some of aren’t computer savvy and make all security changes as hand holding as the NPE is.

For the time being I’ll just have to keep telling it to remind me later each time I log in.

From the blog post: Blog post
someone tries to log in to your account from a new location, we’ll send an SMS to your cell phone or call your landline to verify that it’s you.

From the support page: Support page
Can I use SMS Authentication with a land line or online phone service such as Skype?
Land lines can be used with the voice message option, but online phone services such as Skype won’t work with the system.

I have just had another look at it and it definately says to enter a ‘mobile’ number. There is no landline option. I haven’t a clue about SMS (Silly Monitoring System?) so I don’t know what phones support it.

When it actually offers a landline option I might take it.

Oenanthe.6549:

I have just had another look at it and it definately says to enter a ‘mobile’ number. There is no landline option. I haven’t a clue about SMS (Silly Monitoring System?) so I don’t know what phones support it.

When it actually offers a landline option I might take it.

If it’s a valid phone number, it can’t tell a landline number from a mobile number. You put in the phone number and select the voice option. It dials you and a computer voice tells you the code.

As to saying mobile and not mentioning landline, ANet is notorious for making badly word explanations that confuse rather than enlighten. I expect it’s just more bad wording.

I know it works for land lines. When I set it up I absentmindedly put in my land line number. I instantly got a call with a synthesized voice reading off the authentication code (I had the “send text” option toggled but it was smart enough to realize I wasn’t on a text receiving device). Whoops, thought I, and changed the number to my cell. At which point it promptly sent a written code to my smart phone.

Now, if you don’t have a super good memory for numbers you just heard, or a handy pen and paper, the land line option could be annoying. But it does work.

I do not want to be reminded later. I do not want to be remind at all.

Every 5 logins, I think you can manage clicking the one button.

I would allow it to say whatever it wanted to if it didn’t prevent me from hitting enter twice and getting into the game with no hindrance.

Then just add an authenticator and you will never see it again. If you do not want to provide a phone, use the PC based authenticators they remove the message as well. And you only need to use it once, then just tell it to remember the location and you will never be prompted on that computer.

I really do not see the push back some people are having with this. It benefits you by having this extra bit of security on your account.

I disagree with the other people responding, that sounds very annoying and if you have decided not to use an authenticator you should not be bothered ever again about it.

“then just tell it to remember the location and you will never be prompted on that computer.”

You will never be prompted on that IP Address range is correct. What you said is absolutely a misrepresentation of facts.

Here is one of the Dev responses on this issue:

https://forum-en.gw2archive.eu/forum/support/support/How-to-get-rid-of-that-stupid-SMS-request/first#post5411862

Good luck.

Either give it a remind me never button or make it not prevent me from hitting enter to get into the game. Right now when the buttons come up they force me to use the mouse and that just adds to my disenjoyment of the decision by ANet.

They won’t add a remind me never option. They want people to get authenticators or SMS. Because it reduces the chances of getting hacked and having your account stolen. Which only leads to support having to get involved. And given that over 90% of hacks in this game coincide with the email getting hacked, saying email authentication should be enough isn’t going to work.

Blame the hackers and blame the people with lax security. But ANet needs to do what’s best for the the game and its economy. And hackers hurt the game and its economy.

They may in the future increase the number of log ins before asking again, but they won’t make a remind me never option.

So now it’s happening on my old account- when I log in I get two options ‘now’ or ‘remind me later’ .

Where’s the ‘no thanks’ option, or is this going to annoy me every time I log in?

Maybe someone can dig out the Anet employee’s cell number for this one and we can all link it back to it, so he gets all the texts.

Why don’t you want to use the SMS? Extra security is actually a good thing.

There is no “no thanks”, They will keep harassing you every time you log in. They claimed in one post that its only once every 5th login but any of us that refuses/refused to do it know that that was a lie. It harassed me every single time I logged in, several times a day. I eventually set up a VM to run that winauth program because I’m not running such shady stuff on my system. and because I got tired of the harassment. I’ve been using 2-step on my account since the first week of GW2 and all of a sudden that is not good enough and they need to harass me, it really kittened me off.

A 6 digits pin code to actually play a character after loged in would have been sufficient.

Dinks.2478:

There is no “no thanks”, They will keep harassing you every time you log in. They claimed in one post that its only once every 5th login but any of us that refuses/refused to do it know that that was a lie. It harassed me every single time I logged in, several times a day. I eventually set up a VM to run that winauth program because I’m not running such shady stuff on my system. and because I got tired of the harassment. I’ve been using 2-step on my account since the first week of GW2 and all of a sudden that is not good enough and they need to harass me, it really kittened me off.

What makes Winauth a shady program?

eisberg.2379:

Why don’t you want to use the SMS? Extra security is actually a good thing.

I don’t like giving companies my phone number. I tend to get spam calls all the time when I do. Companies will sell your number.

eisberg.2379:

Why don’t you want to use the SMS? Extra security is actually a good thing.

Because it is buggy as all hell.

I installed the PC version, worked fine till I restarted the computer, then locked me out of the game. My PC security picked it up as a potential threat.

I wont install malware.

hildegain.2106:

eisberg.2379:

Why don’t you want to use the SMS? Extra security is actually a good thing.

I don’t like giving companies my phone number. I tend to get spam calls all the time when I do. Companies will sell your number.

I can assure you ArenaNet didn’t sell mine. Oh, yeah, and sold none of the ones they got actually.

GuzziHero.2467:

eisberg.2379:

Why don’t you want to use the SMS? Extra security is actually a good thing.

Because it is buggy as all hell.

I installed the PC version, worked fine till I restarted the computer, then locked me out of the game.

I wont install malware.

The SMS authenticator doesn’t make you install anything…

Kordash.2197:

GuzziHero.2467:

eisberg.2379:

Why don’t you want to use the SMS? Extra security is actually a good thing.

Because it is buggy as all hell.

I installed the PC version, worked fine till I restarted the computer, then locked me out of the game.

I wont install malware.

The SMS authenticator doesn’t make you install anything…

Winauth?

Oh the phone version. I dont want to give my phone number to anyone. Also, if I have 2 accounts how does that work?

‘SMS’, did i say PC authenticator ?

Also, with 2 accounts, you simply receive a SMS for each time you try to log in, same as if you had only one. Simple as that.

Kordash.2197:

GuzziHero.2467:

eisberg.2379:

Why don’t you want to use the SMS? Extra security is actually a good thing.

Because it is buggy as all hell.

I installed the PC version, worked fine till I restarted the computer, then locked me out of the game.

I wont install malware.

The SMS authenticator doesn’t make you install anything…

Not everyone has a smart phone or unlimited text. And if your IP changes like some ISP’s have a tendency to do to people, the texts from the SMS can eat away at your text allowance, if you have any.

@GuzziHero: Do you have a smart phone? If so, would something like the Google Authenticator work for you? It’s not computer software, but it doesn’t require your phone number. And you don’t have to remember a key unlike WinAuth does from what I hear.

And to those of you saying that you’re getting the pop up more often than once per 5 log ins, maybe download a free video recording software trial and screen capture it and send in a ticket to support and when you get the automated reply back, attach a link to or upload the recording as an attachment.

Give them some poof that you just aren’t forgetting the four log ins in between. So that they can attempt to figure out why it’s bugging on your accounts but not for others.

Keep in mind, it does count per device, so those of you with multiple accounts who jump between accounts will hit the 5th log in more often than someone who sticks to one account only.

Seera.5916:

Not everyone has a smart phone or unlimited text. And if your IP changes like some ISP’s have a tendency to do to people, the texts from the SMS can eat away at your text allowance, if you have any.

@GuzziHero: Do you have a smart phone? If so, would something like the Google Authenticator work for you? It’s not computer software, but it doesn’t require your phone number. And you don’t have to remember a key unlike WinAuth does from what I hear.

I have a ZTE ‘Kis’, if that counts as a smartphone I have no idea. One of those Android thingies.

Could I use Google Authenticator with the GW2 authentication?

Backing this up. I have no interest in providing my cell phone to everyone interested in it and I also consider current security level sufficient.

By the way: I see a chance of loosing a phone much higher then the chance of loosing e-mail box.

Kordash.2197:

hildegain.2106:

eisberg.2379:

Why don’t you want to use the SMS? Extra security is actually a good thing.

I don’t like giving companies my phone number. I tend to get spam calls all the time when I do. Companies will sell your number.

I can assure you ArenaNet didn’t sell mine. Oh, yeah, and sold none of the ones they got actually.

Go ahead, assure me.

GuzziHero.2467:

eisberg.2379:

Why don’t you want to use the SMS? Extra security is actually a good thing.

Because it is buggy as all hell.

I installed the PC version, worked fine till I restarted the computer, then locked me out of the game. My PC security picked it up as a potential threat.

I wont install malware.

That “Potential” threat is a false positive. WinAuth is not a walware at all. it is open source, if it was malware people would have found that a long time ago and exposed it. You were having troubles with it, most likely something on your computer was conflicting with it.

GuzziHero.2467:

Seera.5916:

Not everyone has a smart phone or unlimited text. And if your IP changes like some ISP’s have a tendency to do to people, the texts from the SMS can eat away at your text allowance, if you have any.

@GuzziHero: Do you have a smart phone? If so, would something like the Google Authenticator work for you? It’s not computer software, but it doesn’t require your phone number. And you don’t have to remember a key unlike WinAuth does from what I hear.

I have a ZTE ‘Kis’, if that counts as a smartphone I have no idea. One of those Android thingies.

Could I use Google Authenticator with the GW2 authentication?

If you can download apps, you should be able to download the Google Authenticator.

DarkMagister.7429:

Backing this up. I have no interest in providing my cell phone to everyone interested in it and I also consider current security level sufficient.

By the way: I see a chance of loosing a phone much higher then the chance of loosing e-mail box.

But ~90% of the people who have their GW2 account hacked, have a compromised email as well.

tomlin.8204:

Kordash.2197:

hildegain.2106:

eisberg.2379:

Why don’t you want to use the SMS? Extra security is actually a good thing.

I don’t like giving companies my phone number. I tend to get spam calls all the time when I do. Companies will sell your number.

I can assure you ArenaNet didn’t sell mine. Oh, yeah, and sold none of the ones they got actually.

Go ahead, assure me.

Considering that I set up the SMS when it became available, and to this day I still do not get any kind of solicitation calls on my smart phone.

Seera.5916:

DarkMagister.7429:

Backing this up. I have no interest in providing my cell phone to everyone interested in it and I also consider current security level sufficient.

By the way: I see a chance of loosing a phone much higher then the chance of loosing e-mail box.

But ~90% of the people who have their GW2 account hacked, have a compromised email as well.

Sounds like a personal problem for people who use the same password for everything. Maybe they should be encouraging good security practices instead of just sweeping the problem under the rug with these stupid systems that require a phone number or installing shady software on your computer.

Dinks.2478:

Seera.5916:

DarkMagister.7429:

Backing this up. I have no interest in providing my cell phone to everyone interested in it and I also consider current security level sufficient.

By the way: I see a chance of loosing a phone much higher then the chance of loosing e-mail box.

But ~90% of the people who have their GW2 account hacked, have a compromised email as well.

Sounds like a personal problem for people who use the same password for everything. Maybe they should be encouraging good security practices instead of just sweeping the problem under the rug with these stupid systems that require a phone number or installing shady software on your computer.

WinAuth isn’t shady. They don’t sell your phone number either.

Why don’t people who don’t want to use the SMS validation just use the verification code version? It doesn’t involve your phone number and the notifications still don’t show up. SMS isn’t their only two step security

BeckaPL.2670:

Why don’t people who don’t want to use the SMS validation just use the verification code version? It doesn’t involve your phone number and the notifications still don’t show up. SMS isn’t their only two step security

If you mean the PC version… see above. Because it is buggy and gets detected as malware.

Dinks.2478:

Seera.5916:

DarkMagister.7429:

Backing this up. I have no interest in providing my cell phone to everyone interested in it and I also consider current security level sufficient.

By the way: I see a chance of loosing a phone much higher then the chance of loosing e-mail box.

But ~90% of the people who have their GW2 account hacked, have a compromised email as well.

Sounds like a personal problem for people who use the same password for everything. Maybe they should be encouraging good security practices instead of just sweeping the problem under the rug with these stupid systems that require a phone number or installing shady software on your computer.

It’s a case of the few ruining it for the many.

One bad apple spoils the barrel.

And they do encourage unique passwords. However, too many don’t and hacked accounts threaten the economy when they get rolled back. As the items sold are duplicated, as innocent players don’t get robbed of the gear and mats that resulted from the hackers selling off everything a player has.

Dinks.2478:

Maybe they should be encouraging good security practices instead of just sweeping the problem under the rug with these stupid systems that require a phone number or installing shady software on your computer.

Why do you think they’re enforcing this? Because most hacked accounts shared the same password with their email which made email authentication pointless. If you have a secure email, especially one with 2FA, then what ArenaNet is now requiring is simply redundant.

Also, you don’t need to install anything to use an authenticator. Simply make your own using your web browser.

Healix.5819:

Also, you don’t need to install anything to use an authenticator. Simply make your own using your web browser.

And for those unaware of how to do this, how would one do that?

GuzziHero.2467:

BeckaPL.2670:

Why don’t people who don’t want to use the SMS validation just use the verification code version? It doesn’t involve your phone number and the notifications still don’t show up. SMS isn’t their only two step security

If you mean the PC version… see above. Because it is buggy and gets detected as malware.

Only gets detected as malware on crappy security programs. The fact is, WinAuth is not malware at all, crappy security programs are giving a false positive. For the fact that WinAuth is open source, people would have found the malware in WinAuth a long time ago and it would have been big news. But that never happened, because it is not malware at all, and that is a fact.

eisberg.2379:

tomlin.8204:

Kordash.2197:

hildegain.2106:

eisberg.2379:

Why don’t you want to use the SMS? Extra security is actually a good thing.

I don’t like giving companies my phone number. I tend to get spam calls all the time when I do. Companies will sell your number.

I can assure you ArenaNet didn’t sell mine. Oh, yeah, and sold none of the ones they got actually.

Go ahead, assure me.

Considering that I set up the SMS when it became available, and to this day I still do not get any kind of solicitation calls on my smart phone.

That doesn’t assure me- it just means that you rank so low on the metrics that your number never ends up on the marketing lists. Alternatively, they just haven’t sold the list (yet) and are waiting to hit 1 million numbers before they cash in.

Of course, if Anet’s telephone number database gets hacked then that could also be fun and games.

On the other hand, loads of people use twitter and facebook and post there all the time in supposedly private albums and then find to their cost they weren’t secure either, so what’s one more data source/risk….

Maybe it’s a generational thing, and in another two or three generations the whole concept of privacy will be gone (it’s actually quite a recent invention anyway).

Notsoperky.4291:

eisberg.2379:

tomlin.8204:

Kordash.2197:

hildegain.2106:

eisberg.2379:

Why don’t you want to use the SMS? Extra security is actually a good thing.

I don’t like giving companies my phone number. I tend to get spam calls all the time when I do. Companies will sell your number.

I can assure you ArenaNet didn’t sell mine. Oh, yeah, and sold none of the ones they got actually.

Go ahead, assure me.

Considering that I set up the SMS when it became available, and to this day I still do not get any kind of solicitation calls on my smart phone.

That doesn’t assure me- it just means that you rank so low on the metrics that your number never ends up on the marketing lists. Alternatively, they just haven’t sold the list (yet) and are waiting to hit 1 million numbers before they cash in.

Of course, if Anet’s telephone number database gets hacked then that could also be fun and games.

On the other hand, loads of people use twitter and facebook and post there all the time in supposedly private albums and then find to their cost they weren’t secure either, so what’s one more data source/risk….

Maybe it’s a generational thing, and in another two or three generations the whole concept of privacy will be gone (it’s actually quite a recent invention anyway).

Oh trust me, I would be high on a telemarketing list, I am right in the key demographics for that kind of stuff.

Arenanet and NCSoft also have a privacy policy, they are not going to sell your phone number to anybody.

I only give my phone number/personal information to places that have a privacy policy where they do not sell my personal information. And this is why, after all these years I never had any telemarketing calls on my phone.

GuzziHero.2467:

If you mean the PC version… see above. Because it is buggy and gets detected as malware.

WinAuth is open-source so you can build it yourself. Ensure you only download the binaries from the proper website, as unfortunately I can’t do anything if someone else compiles a malware version and you mistakenly download it.

If you find any bugs, I’d appreciate it if you log it as an issue on the github page.

There’s been a very big push with major corporations lately to get at our telephone numbers. This obviously doesn’t bother most people. But to some of us a phone is like our underwear. It’s ours alone. No touchy. I’m tired of logging in to this and that and it pushing to get at my phone. Puts me on edge. Maybe Anet is innocent but they were the 10th vacuum cleaner salesclerk I’ve had at my cyber door today.

@Drow… Personally identifiable information is worth a lot of money nowadays ; )… Why do you think they all want it? It’s not just about account “security”….

You could always ask them what they may possibly do with it, but good luck getting a response as I’ve logged two tickets recently asking about the EULA and privacy concerns which are yet to warrant a response.