The 0.10.1d account changes

Thank you!

wanna know whats funny?

just as this patch arrived all my orbs are gone

the game said someone from Porto Alegre, brazil entered my account.

I'm pretty sure the website got hacked and they got my account through there.

Now I read that they won't even look into it? i'm thinking in quitting :/

I don't know what to do I had 20 alchemy 13 chaos 1 divine 120 scrolls of identify i've been grinding for a month, every break i had from work..

anyway good game I hope they look into it and ban the guys :/

"

Udja wrote:

@Elorn = +100 This is oh so true :)

Its not, is a high entropy when you use a random alphanumeric decrypter, but if you use a a dictionary decrypter with 1-2-3-4 words it would be faster, also if you use put some logic there is easier because "correct horse battery stapler" is "adjective animal object object" so with that no more than 4 days to guess a 4 words lengh password I guess xP... maybe if you mix lenguages the thing change like "correct caballo batterie hefter" (english spanish french german)

Regards

"

Elorn wrote:

How about dictionary attack? Yep you are screwed.

First off, Awesome work guys. I haven't had any breach, but it makes me feel safer. Information like usernames/passwords spread fast on the internet.

The only recommendation i have is something I saw somebody mention in one of the replies

-Allow us to save certain ISPs that are safe.

I've noticed other websites use this pretty effectively.

"

Wolfe_masque wrote:

since I live NEAR Cambridge! :D

nice try, honeypot :)

"

Chris wrote:

I'd really love to be able to help users who have lost all their items and hard work

it's no work, it's pleasure.

thx devs for your hard work implementing this feature and dedication for us users.

I've an idea for who wants (like me) an extra security but has a dynamic IP.
You were really wise about putting it city - bound so it doesn't give problems to most dynamic ip users , but what about adding an extra security like a file with an extra password that both the client and the server knows and it's linked to that client , so for logging in a pass thieft must have even the file (or the whole client) to log in.

This feature won't be a iusse even if users have multiple pc (thing easy to solve if they copy & paste in the pcs the same client). But it adds an extra problems to "hackers" becouse they have to access a file into the computer of someone (it's doable but the odds of having both the password and the file they need makes it harder to do)

OFC it can cause problems : if someone deletes his POE client and he didn't backed up the file he will lose his account , but just make that option optional so even paranoid (like me) players can be happy ^^.

I never work too hard in games since when i got hacked in a game where i spent over 3 years of my life. I was really depressed for a looong time.

I hope that the idea is understandable , sorry english is not my main language.

Chris,

1) Fast solution to urgent problem as always!
2) Taking the time to explain the why & why not's in depth as we like it!

p.s. The above applies to all of GGG ^_^

"

exploder:

Its not, is a high entropy when you use a random alphanumeric decrypter, but if you use a a dictionary decrypter with 1-2-3-4 words it would be faster, also if you use put some logic there is easier because "correct horse battery stapler" is "adjective animal object object" so with that no more than 4 days to guess a 4 words lengh password I guess xP... maybe if you mix lenguages the thing change like "correct caballo batterie hefter" (english spanish french german)

Regards

LMAO!! I was commenting on how the average person gets confused about all of this confusing shit and not the mechanics involved :)

"

cronus:

nice try, honeypot :)

Oh I like honeypots – they go great with my tea ;)