I actually always wondered the same.
+1 for why it is that way ^^
Freedoom wrote:It is needed (with some urgency) to add an encryptation to the loging in the loging page. Why? Because if anybody log into the game using a public network could lose his or her account. Why? Because the login should be in a https page, so now the information of user and pass is travelling across the network without encrypting and that means anybody can sniff that information and steal it.
Freedoom wrote:All that is cool, but imagine the case when a person is usen the same pass for different things, like: Salem, hotmail, Gmail, etc. and then if he/she lost 1 login also is losing other things more importants. It is only an example, but I see You have a great understanding of the concept security, anyway, what matters? Only It would be a little bug in something which you are offering to the public and can ***** her life. Nothing important. And me worried because I thought a good computer technician or a software developer or etc. have to offer always a product free of bugs and overall: safe. That is the minimum. But it is ok, don't fix nothing . Anyway, to the normal people: better don't connect to the forum page in public or shared networks...
Dallane wrote:Freedoom wrote:All that is cool, but imagine the case when a person is usen the same pass for different things, like: Salem, hotmail, Gmail, etc. and then if he/she lost 1 login also is losing other things more importants. It is only an example, but I see You have a great understanding of the concept security, anyway, what matters? Only It would be a little bug in something which you are offering to the public and can ***** her life. Nothing important. And me worried because I thought a good computer technician or a software developer or etc. have to offer always a product free of bugs and overall: safe. That is the minimum. But it is ok, don't fix nothing . Anyway, to the normal people: better don't connect to the forum page in public of shared networks...
I do want to clarify that I do agree that the page should be in https. As with all things security related there might be a reason it's not implemented. I just checked haven and hearth and it is in the same situation. Loftar more than likely has a good reason why it's not on there or here. Have you checked the client log in?
grimkid wrote:Freedoom wrote:All that is cool, but imagine the case when a person is usen the same pass for different things, like: Salem, hotmail, Gmail, etc. and then if he/she lost 1 login also is losing other things more importants. It is only an example, but I see You have a great understanding of the concept security, anyway, what matters? Only It would be a little bug in something which you are offering to the public and can ***** her life. Nothing important. And me worried because I thought a good computer technician or a software developer or etc. have to offer always a product free of bugs and overall: safe. That is the minimum. But it is ok, don't fix nothing . Anyway, to the normal people: better don't connect to the forum page in public or shared networks...
That's called social engineering on personal security ignorance:D. It's a thing where people say "i have nothing to hide" and don't really care about common sense security measures, and use same password for everything. If you use this kind of aittude regarding you own personal security , you must be an awesome target for the raiders as well in-game.
since this game is about paranoia and trust issues, and how to be cautious (not all the time but heh) , most of salem community i imagine have the same atitude regarding personal accounts and all that.
Just like you teach you grandparents not to click on ads that will lead them to porn, you teach yoruself to properly secure your personal accounts with proper passwords.
tldr: -1000 on this one. The system went well so far, the devs are doing great at what they do, no need to use their time on petty things like this one.
Nsuidara wrote:Freedoom wrote:It is needed (with some urgency) to add an encryptation to the loging in the loging page. Why? Because if anybody log into the game using a public network could lose his or her account. Why? Because the login should be in a https page, so now the information of user and pass is travelling across the network without encrypting and that means anybody can sniff that information and steal it.
You have 100% right...
but but do not demand this from this devs (can't say why)
because i'm not wanna be salty and got BAN
Freedoom wrote: a sowftware provider should have to offer a 100% safe software product.
Freedoom wrote:Not all people knows about computers.
Freedoom wrote:Anyway, is an added problem that the logging in forum is the same that game logging. If you lose your forum account, you loose your game account. And It is not has to be in the same network at the begginning, a hacker only would need to begin the process getting into a pc with netwoork close to the yours, scanning wifi networks, finding your network in the radius and checking your router confuguration . It is a way, but there are more.
TotalyMeow wrote: Claeyt's perspective of Salem and what it's about is very different from the devs and in many cases is completely the opposite of what we believe.
Users browsing this forum: No registered users and 5 guests