Results 1 to 10 of 132

Thread: Security Tokens/Authenticators are useless; SE needs to fix this immediately.

Thread Tools
- Show Printable Version
- Subscribe to this Thread…
Search Thread
- Advanced Search
Display
- Switch to Linear Mode
- Hybrid Mode
- Switch to Threaded Mode

Hybrid View

10-08-2013 01:00 AM #1
Eekiki

View Profile

View Forum Posts
Player

Join Date

Mar 2011

Posts

3,214

Character
Kickle Cubicle

World
Balmung

Main Class

Rogue Lv 90
Originally Posted by Orophin

While it sounds like SE could take better steps to improve their own security, they can't be held accountable for people's poor browsing habits if they end up getting a virus from somewhere.

The fix is simple. All SE needs to do is encrypt the session data. And don't give us the "memory limitations" or "server resources" excuse. Encrypting the session data generates a negligible amount of overhead.

Am I the only one who thinks that some of the companies SE outsourced their programming to are in cahoots with RMT sites? There seem to be a TON of obvious backdoors. It's very strange that the RMTs were able to almost immediately take over the economy.

(20)
Reply With Quote
10-08-2013 02:23 AM #2
M4Fade

View Profile

View Forum Posts
Player
Join Date

Jun 2012

Posts

107

Character
Six Chambers

World
Balmung

Main Class

Marauder Lv 50
Originally Posted by Eekiki

And don't give us the "memory limitations" or "server resources" excuse.

This. LOL.

There really needs to be some meme's regarding these phrases.

(1)
Reply With Quote
10-08-2013 02:43 AM #3
Lisotte

View Profile

View Forum Posts
Player
Join Date

Jun 2013

Posts

339

Character
Lisotte Poena

World
Sargatanas

Main Class

Warrior Lv 80
Originally Posted by M4Fade

This. LOL.

There really needs to be some meme's regarding these phrases.

It's the new ps2 limitations

(1)
Reply With Quote
10-08-2013 02:42 AM #4
Ranebow

View Profile

View Forum Posts
Player
Join Date

Feb 2013

Posts

104

Character
Justice Knight

World
Odin

Main Class

Gladiator Lv 32
Originally Posted by Eekiki

Am I the only one who thinks that some of the companies SE outsourced their programming to are in cahoots with RMT sites? There seem to be a TON of obvious backdoors. It's very strange that the RMTs were able to almost immediately take over the economy.

No, and it goes hand in hand with my conspiracy theory that MMO developers intentionally design features/items into the games that are meant to be a commodity, of which become so desired that they fuel RMT practices.
They may ban thousands of accounts, but they still made money off it.

(2)
Reply With Quote
10-08-2013 02:46 AM #5
Flarestar

View Profile

View Forum Posts
Player
Join Date

Aug 2013

Posts

70

Character
Flarestar Bladesinger

World
Malboro

Main Class

Warrior Lv 70
Originally Posted by Eekiki

The fix is simple. All SE needs to do is encrypt the session data. And don't give us the "memory limitations" or "server resources" excuse. Encrypting the session data generates a negligible amount of overhead.

Am I the only one who thinks that some of the companies SE outsourced their programming to are in cahoots with RMT sites? There seem to be a TON of obvious backdoors. It's very strange that the RMTs were able to almost immediately take over the economy.

Um. Encrypting the session data is fine but does nothing against MITM attacks.

The second part of the fix is making the one-time use code expire properly. Those codes should NOT stay valid for more than a very, very brief time window. That's how you protect against MITM. It's still not foolproof if they're fast enough, but it drastically cuts down on your vulnerability.

Edit - Also IP binding. That's spoofable, particularly if you already have a MITM situation, but it at least helps.

(1)

Last edited by Flarestar; 10-08-2013 at 02:48 AM. Reason: Correction.
Reply With Quote

Quick Navigation General Discussion Top

« Previous Thread | Next Thread »

Privacy Policy | Cookie Policy

		Privacy Policy

© Sony Interactive Entertainment LLC."PlayStation Family Mark", "PlayStation", "PS5 logo", "PS5", "PS4 logo" and "PS4" are registered trademarks or trademarks of Sony Interactive Entertainment Inc.
Microsoft, the Xbox Sphere mark, the Series X|S logo and Xbox Series X|S are trademarks of the Microsoft group of companies.
Windows is either a registered trademark or trademark of Microsoft Corporation in the United States and/or other countries.
MAC is a trademark of Apple Inc., registered in the U.S. and other countries.
©2025 Valve Corporation. Steam and the Steam logo are trademarks and/or registered trademarks of Valve Corporation in the U.S. and/or other countries.
ESRB and the ESRB rating icon are registered trademarks of the Entertainment Software Association.
All other trademarks are property of their respective owners.

© SQUARE ENIX

Square Enix, Inc., 999 N. Pacific Coast Highway, El Segundo, California 90245