Feedback:User/Dukeswe/Anti-hacking suggestion for Guild wars 2
Anti-hacking suggestion for Guild wars 2 | |
|---|---|
| User | Dukeswe |
| Categories | Mechanics |
I got hacked some days ago and lost everything valuable on the account. I lost my chaos gloves, 4 tormented weapons, everlasting tonic and about 400k+ in money among other things. The hacker even destroyed alot of customized items for fun or something... I know several people who gotten hacked and I think I can speak for everyone when I say that nobody wants to lose everything they spent so much time gathering/earning. I certainly don't want it to happen to me again.
I made up 2 easy solutions which I think would deal a devastating blow to hackers and money trading companies (Since the money trading companies do hack accounts)
1. After you logged on to your account there should be an optional feature in options to activate. The feature should be to activate to only be able to log on from certain IP adresses which you choose yourself. Everytime you then try to log on with your username. Guild wars will then check the list of IP's that are trusted associated with your account and then allowed connection based on that.
An example on how it could look ingame:
Protect your account with IP security
Your current ip: 12.345.678.99 [Add this IP to your trusted IP's]
Type IP of your choice:__.___.___.__ [Add this IP to your trusted IP's]
List of IP's allowed connection to your account:
56.124.753.12 [Remove this IP from your trusted IP's]
12.345.678.99 [Remove this IP from your trusted IP's]
Just like how you easily can find out your ip by clicking on http://www.ip-adress.com/. Guild wars obviously knows what IP it connects to. I don't know if there would be anyway for the hackers to circumvent this method (creating their own fake ip that looks like yours?) But I know it would definately increase the account security alot!
Just like now you should of course be able to override this by logging on to your NC Soft account and disable it incase you change IP or something.
2.
The second suggestion would be to be able to select an option inside guild wars that says something like: Only allow logins to this account from this computer. (For people not playing Guild wars on several computers.)
Guild wars would then create a file in your guild wars folder with an unique serial connected to your account.
So everytime you connect it would check if the serial in the file matches the one asked by the login server.
Same thing here with being able to be overridden with your NC account.
Summary: If these 2 security options were to be implemented by Anet this is what would happen: When you login with your correct username and password the login server checks which IP's are allowed and see if you are using one of those IP's. Then it would check the file with the serial that is unique for your account and if they match it would allow login just like normal. This process might make the login process take a few more seconds than normal but wouldn't it be worth it? :)
How it would be for a hacker: Ok lets say the hacker gotten to know your password and login. He would then also have to find out what your IP is and somehow clone it.(If that is even possible) And after that he would need the file with the unique serial on his computer. For that he would have to manage to attack the computer with a trojan and copy that file to his computer or manage to login remotely to your guildwars account using your computer.
To me that sounds like an awful lot of hard work :) Hackers would no longer be able to use Password crackers that just spam words from a dictionary either.
We could all feel safer and Anet could be the first company to introduce this innovative account security to a MMO game :)
