Supposedly to allow duplicate names of Legolases, Drizzits and Merlins. However, I got an error that says "Name not available" or something like that during character naming in beta. Wonder is this changed, since then it make no sense to have @yourname to distinguish gamers when it does not do anything ingame...
The possibility of the universe collapsing into a singularity is higher than the birth of a perfect MMORPG.
Originally posted by jircris they would need acess to your e-mail to allow them to log in from a different IP.
This. Somehow, while playing from the same pc at the same desk in the same house since the game started, I got a login error telling me that I was attempting to log in from a new IP. I had to use the new code sent via email in order to log in. Great security system, if a little wonky.
This much is true, and I appreciate that they've done this, but consider that people may be picking their login name based on long time tradition, and that creative google searching or just pairing with popular @mail.coms could result in learning the user's email. There's large databases of compromised email accounts out there, and what's worse, there's huge databases of passwords tied to emails.
No, not passwords for those emails. Passwords for WoW mostly. When this stuff gets stolen, it goes into various stores, is traded back and forth, etc.
Further, knowing usernames can help pinpoint high value targets. Luckily that's not me.
The fact that it works to send out emails proves that Blizz's databases were hacked and accessed and that it was insecurity in their backend that lead to so many hacks. I believe this also happened in GW2 (can't remember but I know there was one other game where accounts were getting hacked left and right) Of course I and many others knew that at the time, but the fanboy roar in defense was deafening. Why does it prove this? Because the alternative is keylogging. You can't really brute force any decent password unless you have a reference point. Nor are gold spammers going to sit around trying to get at a single account when they have a treasure trove of databased account names and passwords to work from.
It's much more efficient to just shotgun. So the way everyone would have had to have gotten hacked would be keylogging, and keylogging would have given access to email accounts as well. But the email system works. Ergo, companies like Zenimax are covering their backend asses with an email system because they KNOW that backend compromises can occur no matter how good you are at covering them up or deploying countermeasures.
However, while it makes it very effective deterrence against sir spamalot, sir tweenhaxor becomes a problem, because when he knows your username, and isn't shotgunning, he now has a leg up. He can probably find out info about you, your email address. Maybe guess your secret questions because it's all out there somewhere. That deviant is now empowered. He doesn't just know your character, he likely knows you.
99% of people playing probably had no idea that others would be able to see their login usernames.
Originally posted by jircris they would need acess to your e-mail to allow them to log in from a different IP.
This. Somehow, while playing from the same pc at the same desk in the same house since the game started, I got a login error telling me that I was attempting to log in from a new IP. I had to use the new code sent via email in order to log in. Great security system, if a little wonky.
Unless you've requested a static IP from your ISP, your IP probably changes every once in awhile.
I can not remember winning or losing a single debate on the internet.
Here is what we do...build a time machine and send back a government worker known as "El Preventito". Send him back to the moment when Zenimax CEO was born and have him blast the little imp back into his mothers womb with a disgusting bean fueled fart. Hopefully the womb will act as a gas chamber and all MMORPG's problems will vanish.
Originally posted by Joejc7135 Here is what we do...build a time machine and send back a government worker known as "El Preventito". Send him back to the moment when Zenimax CEO was born and have him blast the little imp back into his mothers womb with a disgusting bean fueled fart. Hopefully the womb will act as a gas chamber and all MMORPG's problems will vanish.
There are moments I truly feel for humanity when this is the best someone can come up with...
Originally posted by Joejc7135 Here is what we do...build a time machine and send back a government worker known as "El Preventito". Send him back to the moment when Zenimax CEO was born and have him blast the little imp back into his mothers womb with a disgusting bean fueled fart. Hopefully the womb will act as a gas chamber and all MMORPG's problems will vanish.
There are moments I truly feel for humanity when this is the best someone can come up with...
The user and all related content has been deleted.
Somebody, somewhere has better skills as you have, more experience as you have, is smarter than you, has more friends as you do and can stay online longer. Just pray he's not out to get you.
Jeez you guys have no imagination..fine you want a serious answer?
When you get hacked and try to blame Zenimax I will laugh at you. If you want to affect change, uninstall the game and boycott Zenimax for their careless move with visible account names. Otherwise you guys are just whining to whine...such a serious issue should have a serious response. Unless of course the sky is falling. And attention whores are bawling.
Outside of the annoyance of everyone knowing your login, ESO only has the responsibility of keeping the server secure and our personal and login information safe from intrusion. After that, it is on the player. Morons that:
Don't keep their computers secure and free of malware and viruses
Visit questionable websites (See #1)
Download "stuff (See #1)
Purchase gold (See #1)
ESO can only do so much. It is the USER'S responsibility to keep their account information and computer secure.
Raquelis in various games Played: Everything Playing: Nioh 2, Civ6 Wants: The World Anticipating:Everquest NextCrowfall, Pantheon, Elden Ring
The user and all related content has been deleted.
Somebody, somewhere has better skills as you have, more experience as you have, is smarter than you, has more friends as you do and can stay online longer. Just pray he's not out to get you.
Outside of the annoyance of everyone knowing your login, ESO only has the responsibility of keeping the server secure and our personal and login information safe from intrusion. After that, it is on the player. Morons that:
Don't keep their computers secure and free of malware and viruses
Visit questionable websites (See #1)
Download "stuff (See #1)
Purchase gold (See #1)
ESO can only do so much. It is the USER'S responsibility to keep their account information and computer secure.
How is the user able to properly keep their information secure when half of it is being handed out to the hackers by default?
IN all honesty there's a lot more to it than that, not only would they need your Pass, they'd also need your email address and it's pass. How else would they put in the security code?
For every minute you are angry , you lose 60 seconds of happiness."-Emerson
The user and all related content has been deleted.
Somebody, somewhere has better skills as you have, more experience as you have, is smarter than you, has more friends as you do and can stay online longer. Just pray he's not out to get you.
Outside of the annoyance of everyone knowing your login, ESO only has the responsibility of keeping the server secure and our personal and login information safe from intrusion. After that, it is on the player. Morons that:
Don't keep their computers secure and free of malware and viruses
Visit questionable websites (See #1)
Download "stuff (See #1)
Purchase gold (See #1)
ESO can only do so much. It is the USER'S responsibility to keep their account information and computer secure.
How is the user able to properly keep their information secure when half of it is being handed out to the hackers by default?
IN all honesty there's a lot more to it than that, not only would they need your Pass, they'd also need your email address and it's pass. How else would they put in the security code?
Oh right, I forgot there's a security code required for public computers. However handing out some of a person's account information is still hindering the security of an account.
I agree, I think they were trying to have a clever block/friend mechanic and really didn't think it through.
For every minute you are angry , you lose 60 seconds of happiness."-Emerson
While I may not like it this is a non issue. Don't use a stupid password, don't use a stupid username so you won't be shamed, and for the love of god use a secure password on your email as even if they get your ESO password they won't be able to get on without access to your email. I use Gmail and I have a secure password, and I use two factor authentication for my Gmail account meaning you won't ever get into my account unless I allow you to.
Secure your email as that is miles more important than an MMO account which can be rolled back and restored.
Owner/Admin of GodlessGamer.com - Gaming news and reviews for the godless.
Outside of the annoyance of everyone knowing your login, ESO only has the responsibility of keeping the server secure and our personal and login information safe from intrusion. After that, it is on the player. Morons that:
Don't keep their computers secure and free of malware and viruses
Visit questionable websites (See #1)
Download "stuff (See #1)
Purchase gold (See #1)
ESO can only do so much. It is the USER'S responsibility to keep their account information and computer secure.
How is the user able to properly keep their information secure when half of it is being handed out to the hackers by default?
short answer is they can't, a password alone will not prevent your account being compromised, although it may make it harder, though given the proliferation of malware and fishing - made easier by the fact that anyone interested in doing so is given your email address - also handy because it also verifies that your email address is in use, and is a valid one, handy information for all sorts of reasons, by the wrong people of course.
If the email address is going to be used as a login id, then as Blizzard discovered, you need to have an additional level of security, and a token generator is the best way of doing so, their cheap, but effective and any game these days that doesn't include them as an option at least, is just making it easier for their customers to be hacked, this isn't after all 1980 any more, and people have to be far more proactive now at protecting themselves online.
The user and all related content has been deleted.
Somebody, somewhere has better skills as you have, more experience as you have, is smarter than you, has more friends as you do and can stay online longer. Just pray he's not out to get you.
At morningstar, you may be right I pretty much acknowledged that a few posts ago. STill I think the concern is understandable. Username has always been one of those things we're told to keep secret, it's been that way since the AOL days, and I'm sure earlier. I can't say anyone here is being overly paranoid for no good reason, it's kind of ingrained in us at this point.
For every minute you are angry , you lose 60 seconds of happiness."-Emerson
While I may not like it this is a non issue. Don't use a stupid password, don't use a stupid username so you won't be shamed, and for the love of god use a secure password on your email as even if they get your ESO password they won't be able to get on without access to your email. I use Gmail and I have a secure password, and I use two factor authentication for my Gmail account meaning you won't ever get into my account unless I allow you to.
Secure you email as that is miles more important than an MMO account which can be rolled back and restored.
It's indeed a major issue, it might not be as much due to the second layer of security but they're still handing out account information.
You hand out your account information every time you email someone. You're also handing out your account information every time you post on here. Use some common sense instead of whining endlessly about a non-issue.
The user and all related content has been deleted.
Somebody, somewhere has better skills as you have, more experience as you have, is smarter than you, has more friends as you do and can stay online longer. Just pray he's not out to get you.
No big deal Other mmos do the same. Also they have another security feature in place. IP recording.
If you log into Elders Scrolls from one computer at one location and later try to login at another location, it will want you to put in a 5 digit code that they send you via email before it will allow you in. Just like what the Steam client does. So keep your email passwords different from your game password. And dont use common sense passwords.
While I may not like it this is a non issue. Don't use a stupid password, don't use a stupid username so you won't be shamed, and for the love of god use a secure password on your email as even if they get your ESO password they won't be able to get on without access to your email. I use Gmail and I have a secure password, and I use two factor authentication for my Gmail account meaning you won't ever get into my account unless I allow you to.
Secure you email as that is miles more important than an MMO account which can be rolled back and restored.
It's indeed a major issue, it might not be as much due to the second layer of security but they're still handing out account information.
You hand out your account information every time you email someone. You're also handing out your account information every time you post on here. Use some common sense instead of whining endlessly about a non-issue.
I don't care about this account, there's nothing of value attached to it. I also have several e-mail accounts each for separate reasons to avoid losing important information. I expect a company to not hand out my account information without my acknowledgement and you should too. I personally invested 95 dollars into ESO already and I'm not happy to see my account name being given out especially when it's not needed.
I don't really have a problem when it comes to you not liking this, nor anyone else. I really don't either. however, failure to read, is not a failure in being told. Then agreeing..
For every minute you are angry , you lose 60 seconds of happiness."-Emerson
While I may not like it this is a non issue. Don't use a stupid password, don't use a stupid username so you won't be shamed, and for the love of god use a secure password on your email as even if they get your ESO password they won't be able to get on without access to your email. I use Gmail and I have a secure password, and I use two factor authentication for my Gmail account meaning you won't ever get into my account unless I allow you to.
Secure you email as that is miles more important than an MMO account which can be rolled back and restored.
It's indeed a major issue, it might not be as much due to the second layer of security but they're still handing out account information.
You hand out your account information every time you email someone. You're also handing out your account information every time you post on here. Use some common sense instead of whining endlessly about a non-issue.
I don't care about this account, there's nothing of value attached to it. I also have several e-mail accounts each for separate reasons to avoid losing important information. I expect a company to not hand out my account information without my acknowledgement and you should too. I personally invested 95 dollars into ESO already and I'm not happy to see my account name being given out especially when it's not needed.
I don't really have a problem when it comes to you not liking this, nor anyone else. I really don't either. however, failure to read, is not a failure in being told. Then agreeing..
This is why you can't take people's whines seriously. Nobody wants to put their money where their mouth is...
Step 1.) Make it clear that giving account names out is a very serious security breach that you feel very strongly about.
Step 2.) Drop 100 dollars on the company using this practice.
While I may not like it this is a non issue. Don't use a stupid password, don't use a stupid username so you won't be shamed, and for the love of god use a secure password on your email as even if they get your ESO password they won't be able to get on without access to your email. I use Gmail and I have a secure password, and I use two factor authentication for my Gmail account meaning you won't ever get into my account unless I allow you to.
Secure you email as that is miles more important than an MMO account which can be rolled back and restored.
It's indeed a major issue, it might not be as much due to the second layer of security but they're still handing out account information.
You hand out your account information every time you email someone. You're also handing out your account information every time you post on here. Use some common sense instead of whining endlessly about a non-issue.
I don't care about this account, there's nothing of value attached to it. I also have several e-mail accounts each for separate reasons to avoid losing important information. I expect a company to not hand out my account information without my acknowledgement and you should too. I personally invested 95 dollars into ESO already and I'm not happy to see my account name being given out especially when it's not needed.
Ah so because you "dont care" that makes it OK? What if I dont care about my ESO account hen. Does that then make it OK for you too? Come on, you're grasping way too much to try to be even remotely right about this when it simply isn't happening.
Why aren't you on here raging constantly that every time you post we can see your account name, wether you care about the account or not is is still a HUGE security risk right? Oh, because it isn't the current trendy thing to troll and hate on. I almost forgot.
Actually, I need to change my account name because i didn't realize it would be shared with the entire megaserver. (contains more information about myself that I'm willing to share)
Problem is, you have to talk to their support to do this, and so far I've been waiting two days for a call back.
They won't give out the phone number and let you hold, which I'd be more than willing to do. (unlimited free talk time on both my house and cell phone).
Just trying to live long enough to play a new, released MMORPG, playing New Worlds atm
Fools find no pleasure in understanding but delight in airing their own opinions. Pvbs 18:2, NIV
Don't just play games, inhabit virtual worlds™
"This is the most intelligent, well qualified and articulate response to a post I have ever seen on these forums. It's a shame most people here won't have the attention span to read past the second line." - Anon
Comments
The possibility of the universe collapsing into a singularity is higher than the birth of a perfect MMORPG.
This much is true, and I appreciate that they've done this, but consider that people may be picking their login name based on long time tradition, and that creative google searching or just pairing with popular @mail.coms could result in learning the user's email. There's large databases of compromised email accounts out there, and what's worse, there's huge databases of passwords tied to emails.
No, not passwords for those emails. Passwords for WoW mostly. When this stuff gets stolen, it goes into various stores, is traded back and forth, etc.
Further, knowing usernames can help pinpoint high value targets. Luckily that's not me.
The fact that it works to send out emails proves that Blizz's databases were hacked and accessed and that it was insecurity in their backend that lead to so many hacks. I believe this also happened in GW2 (can't remember but I know there was one other game where accounts were getting hacked left and right) Of course I and many others knew that at the time, but the fanboy roar in defense was deafening. Why does it prove this? Because the alternative is keylogging. You can't really brute force any decent password unless you have a reference point. Nor are gold spammers going to sit around trying to get at a single account when they have a treasure trove of databased account names and passwords to work from.
It's much more efficient to just shotgun. So the way everyone would have had to have gotten hacked would be keylogging, and keylogging would have given access to email accounts as well. But the email system works. Ergo, companies like Zenimax are covering their backend asses with an email system because they KNOW that backend compromises can occur no matter how good you are at covering them up or deploying countermeasures.
However, while it makes it very effective deterrence against sir spamalot, sir tweenhaxor becomes a problem, because when he knows your username, and isn't shotgunning, he now has a leg up. He can probably find out info about you, your email address. Maybe guess your secret questions because it's all out there somewhere. That deviant is now empowered. He doesn't just know your character, he likely knows you.
99% of people playing probably had no idea that others would be able to see their login usernames.
Unless you've requested a static IP from your ISP, your IP probably changes every once in awhile.
I can not remember winning or losing a single debate on the internet.
There are moments I truly feel for humanity when this is the best someone can come up with...
Too much South Park
"Be water my friend" - Bruce Lee
Somebody, somewhere has better skills as you have, more experience as you have, is smarter than you, has more friends as you do and can stay online longer. Just pray he's not out to get you.
Jeez you guys have no imagination..fine you want a serious answer?
When you get hacked and try to blame Zenimax I will laugh at you. If you want to affect change, uninstall the game and boycott Zenimax for their careless move with visible account names. Otherwise you guys are just whining to whine...such a serious issue should have a serious response. Unless of course the sky is falling. And attention whores are bawling.
Outside of the annoyance of everyone knowing your login, ESO only has the responsibility of keeping the server secure and our personal and login information safe from intrusion. After that, it is on the player. Morons that:
Raquelis in various games
Played: Everything
Playing: Nioh 2, Civ6
Wants: The World
Anticipating: Everquest Next Crowfall, Pantheon, Elden Ring
Somebody, somewhere has better skills as you have, more experience as you have, is smarter than you, has more friends as you do and can stay online longer. Just pray he's not out to get you.
I actually like the fact that I can see other's account names. A-holes aren't as anonymous and I can /ignore accounts.
Now if I could only get their real life addresses........
"Be water my friend" - Bruce Lee
IN all honesty there's a lot more to it than that, not only would they need your Pass, they'd also need your email address and it's pass. How else would they put in the security code?
For every minute you are angry , you lose 60 seconds of happiness."-Emerson
Somebody, somewhere has better skills as you have, more experience as you have, is smarter than you, has more friends as you do and can stay online longer. Just pray he's not out to get you.
I agree, I think they were trying to have a clever block/friend mechanic and really didn't think it through.
For every minute you are angry , you lose 60 seconds of happiness."-Emerson
While I may not like it this is a non issue. Don't use a stupid password, don't use a stupid username so you won't be shamed, and for the love of god use a secure password on your email as even if they get your ESO password they won't be able to get on without access to your email. I use Gmail and I have a secure password, and I use two factor authentication for my Gmail account meaning you won't ever get into my account unless I allow you to.
Secure your email as that is miles more important than an MMO account which can be rolled back and restored.
Owner/Admin of GodlessGamer.com - Gaming news and reviews for the godless.
short answer is they can't, a password alone will not prevent your account being compromised, although it may make it harder, though given the proliferation of malware and fishing - made easier by the fact that anyone interested in doing so is given your email address - also handy because it also verifies that your email address is in use, and is a valid one, handy information for all sorts of reasons, by the wrong people of course.
If the email address is going to be used as a login id, then as Blizzard discovered, you need to have an additional level of security, and a token generator is the best way of doing so, their cheap, but effective and any game these days that doesn't include them as an option at least, is just making it easier for their customers to be hacked, this isn't after all 1980 any more, and people have to be far more proactive now at protecting themselves online.
Somebody, somewhere has better skills as you have, more experience as you have, is smarter than you, has more friends as you do and can stay online longer. Just pray he's not out to get you.
For every minute you are angry , you lose 60 seconds of happiness."-Emerson
You hand out your account information every time you email someone. You're also handing out your account information every time you post on here. Use some common sense instead of whining endlessly about a non-issue.
Somebody, somewhere has better skills as you have, more experience as you have, is smarter than you, has more friends as you do and can stay online longer. Just pray he's not out to get you.
No big deal Other mmos do the same. Also they have another security feature in place. IP recording.
If you log into Elders Scrolls from one computer at one location and later try to login at another location, it will want you to put in a 5 digit code that they send you via email before it will allow you in. Just like what the Steam client does. So keep your email passwords different from your game password. And dont use common sense passwords.
You come here a lot and post a lot, how did you not see the pages upon pages of posts about this? On top of that, note the info tab by account name creation. https://account.elderscrollsonline.com/register/account-information .
I don't really have a problem when it comes to you not liking this, nor anyone else. I really don't either. however, failure to read, is not a failure in being told. Then agreeing..
For every minute you are angry , you lose 60 seconds of happiness."-Emerson
This is why you can't take people's whines seriously. Nobody wants to put their money where their mouth is...
Step 1.) Make it clear that giving account names out is a very serious security breach that you feel very strongly about.
Step 2.) Drop 100 dollars on the company using this practice.
Step 3.) Whine about Step 1.
Makes sense.
Ah so because you "dont care" that makes it OK? What if I dont care about my ESO account hen. Does that then make it OK for you too? Come on, you're grasping way too much to try to be even remotely right about this when it simply isn't happening.
Why aren't you on here raging constantly that every time you post we can see your account name, wether you care about the account or not is is still a HUGE security risk right? Oh, because it isn't the current trendy thing to troll and hate on. I almost forgot.
Actually, I need to change my account name because i didn't realize it would be shared with the entire megaserver. (contains more information about myself that I'm willing to share)
Problem is, you have to talk to their support to do this, and so far I've been waiting two days for a call back.
They won't give out the phone number and let you hold, which I'd be more than willing to do. (unlimited free talk time on both my house and cell phone).
"True friends stab you in the front." | Oscar Wilde
"I need to finish" - Christian Wolff: The Accountant
Just trying to live long enough to play a new, released MMORPG, playing New Worlds atm
Fools find no pleasure in understanding but delight in airing their own opinions. Pvbs 18:2, NIV
Don't just play games, inhabit virtual worlds™
"This is the most intelligent, well qualified and articulate response to a post I have ever seen on these forums. It's a shame most people here won't have the attention span to read past the second line." - Anon