You enter your account name and password into the normal fields. Then you hit the button on the authenticator, and enter the code it spits out into the additional authenticator field.
It takes a little getting used to, but I've been using it for years and I don't even notice it anymore.
And no, not a USB. It's got a battery inside that seems to have a very long life. It can easily fit on a keychair or, more likely, lay scattered on your desk. No plugs required.
HenroidMexican kicked from Immigration ThreadCentrism is Racism :3Registered Userregular
edited June 2010
Wait what? The authenticator generates a random number, you enter that number, and can log in? How does the login server know what number was generated?
Wait what? The authenticator generates a random number, you enter that number, and can log in? How does the login server know what number was generated?
When you register an authenticator with an account, you enter a designation number on the back of the authenticator.
I honestly have no idea how it works, but my guess would be that the designation number has something to do with the number that gets spit out.
All I know is, I used to have problems with hackers. Then I got the authenticator, and now I don't.
Wait what? The authenticator generates a random number, you enter that number, and can log in? How does the login server know what number was generated?
Basic crypto. The authenticator uses a seed number, plugs it into an algorithm based on the current time, which generates a number.
Blizzard knows which number it is seeded with and can generate the same number on their side.
Wait what? The authenticator generates a random number, you enter that number, and can log in? How does the login server know what number was generated?
Basic crypto. The authenticator uses a seed number, plugs it into an algorithm based on the current time, which generates a number.
Blizzard knows which number it is seeded with and can generate the same number on their side.
I love how every authenticator comment turns into one guy shouting about how he knows all kinds of awesome, super easy ways to make your WoW account virutally unhackable and refuses to buy an authenticator because he has principles.
Well, I have principles, too. And a job, which pays me enough money to afford a stupid extra $6.50 so that when I get home at night from said job I don't get to experience the joy of logging in to find out all my shit is gone.
I love how every authenticator comment turns into one guy shouting about how he knows all kinds of awesome, super easy ways to make your WoW account virutally unhackable and refuses to buy an authenticator because he has principles.
Unless you're someplace where your personal possessions are highly prone to thievery, with people rolling through your room at all hours of the day, picking up pens and candies and bottle caps and authenticators for black market purposes.
Just in case I find myself lost in a barren wasteland and need to log on to check my auctions.
Echo on
0
Options
HenroidMexican kicked from Immigration ThreadCentrism is Racism :3Registered Userregular
edited June 2010
Tomanta I don't have an iPhone and probably won't have one for a long time. I bought my first regular cellphone just last year, which is out of commission because I've been unemployed and can't pay the bill.
That stupid authenticator is only cheap if you're blessed enough to live in the USA. I wanted one for a while, but I was NOT paying 20 bucks for it. Thankfully, my guild is filled with awesome people, so when I got hacked, one of them mailed me a spare they had, and it only cost like 4 bucks to ship to Canada. Vs the 12 bucks fucking Blizzard wanted.
And for the record, I used to be one of those people who would say "Well maybe if you scanned your computer and didn't click sketchy links, you wouldn't get hacked LOL". And then I got hacked. I would love to know what exactly it was, but I'll probably never know.
Of course, Jeepguy kind of has a point. Blizzard could be doing so much frigging more on their end to put a crimp on hacking. 2 basic plans right off the bat? Limited login attempts, and capitalization of passwords. Your password doesn't give a shit if your caps lock key is on, and you can type it in incorrectly a million times and it doesn't care. This is BASIC security, FFS. I would love it if there was some info on how many passwords were just brute forced open. My armchair idea on what Blizzard could do to slow hacking?
-Make passwords case sensitive (SERIOUSLY! Why isn't this already?!)
-After say... 10 incorrect login attempts? Lock down the account, and send an e-mail to the account telling them it's locked, but all they have to do is go to the website, login, and click a link to unlock.
In theory, that should completely stop anybody from trying to pound the door open. It might be an inconvenience to have to go to the website and log in from there, but it should be an excellent first warning system that somebody is trying to brute force your password.
The Wolfman on
"The sausage of Green Earth explodes with flavor like the cannon of culinary delight."
Almost no accounts hacked are brute-forced. Most are the result of keyloggers.
If hackers had to brute-force the majority of accounts, it would significantly cut into their bottom line, to the point where it might not even be worth it.
Thing is, do keyloggers routinely delete themselves after they've done their job? I'm just thinking of the people who find out they get hacked, do a scan, but find absolutely nothing, me included. If I had found a logger, fine I would have smacked myself on the head for being that careless. I'm just wondering at that point, what else could it be but brute force?
The Wolfman on
"The sausage of Green Earth explodes with flavor like the cannon of culinary delight."
Wait, passwords aren't even case sensitive? I've been hitting my shift key for certain letters all this time for nothing?
Son of a bitch.
(I get annoyed at the same thing for one of the programs I use at work. The only one that requires me to change my password every 30 days).
EDIT: There could very well be a delay - sometimes weeks - between your password getting stolen and getting used. I'm almost certain when my password was stolen was a couple of months before my account was hacked.
Wait, passwords aren't even case sensitive? I've been hitting my shift key for certain letters all this time for nothing?
Son of a bitch.
(I get annoyed at the same thing for one of the programs I use at work. The only one that requires me to change my password every 30 days).
EDIT: There could very well be a delay - sometimes weeks - between your password getting stolen and getting used. I'm almost certain when my password was stolen was a couple of months before my account was hacked.
This is very true, and it's a good reason to change your password regularly.
I suggested that city leaders drop some PvP epics when killed. Then a guildie said there would be city raids every night(which isn't a bad thing, imo).
Bring the "war" back in Warcraft!
Unless they make every single non-guard unkillable and let people not be flagged in Capitals, even when coming from PvP zones, this would be a horrible idea.
Mine chills out inside my monitor stand. It's also where my phone sleeps.
Haha, same here.
I thought someone took a picture of my desk before I saw the little dude at the bottom. I think you and I have the same monitor and very similar desks.
Posts
I'm trying this newfangled "thinly veiled threats instead of hurling infractions like lightning bolts", but I don't think I'm a fan of it.
I would've appreciated one of those instead of being struck with lightning myself. <_<
And how do you think that's working out for them?
You enter your account name and password into the normal fields. Then you hit the button on the authenticator, and enter the code it spits out into the additional authenticator field.
It takes a little getting used to, but I've been using it for years and I don't even notice it anymore.
And no, not a USB. It's got a battery inside that seems to have a very long life. It can easily fit on a keychair or, more likely, lay scattered on your desk. No plugs required.
Better than if they hadn't done it.
PSN: ShogunGunshow
Origin: ShogunGunshow
When you register an authenticator with an account, you enter a designation number on the back of the authenticator.
I honestly have no idea how it works, but my guess would be that the designation number has something to do with the number that gets spit out.
All I know is, I used to have problems with hackers. Then I got the authenticator, and now I don't.
PSN: ShogunGunshow
Origin: ShogunGunshow
Basic crypto. The authenticator uses a seed number, plugs it into an algorithm based on the current time, which generates a number.
Blizzard knows which number it is seeded with and can generate the same number on their side.
Okay so now I know how that works.
P cool.
PSN: ShogunGunshow
Origin: ShogunGunshow
Well, I have principles, too. And a job, which pays me enough money to afford a stupid extra $6.50 so that when I get home at night from said job I don't get to experience the joy of logging in to find out all my shit is gone.
That's really not what I said.
What is it with you guys and strawmen?
For the low, low one time price of $6.50, you can have the piece of mind knowing your WoW account is virtually unhackable.
Just in case I find myself lost in a barren wasteland and need to log on to check my auctions.
I think the $6.50 option is better. :P
(For the record, I us one of the $6.50 authenticators, and probably would have picked it up even if I did have an iPhone at the time).
Only cost me 50p to have it on my n95
Steam: YOU FACE JARAXXUS| Twitch.tv: CainLoveless
- The Four Horsemen of the Apocalypse (2017, colorized)
DUN DUN DUNNNNNNNNNNNNNN
- The Four Horsemen of the Apocalypse (2017, colorized)
And for the record, I used to be one of those people who would say "Well maybe if you scanned your computer and didn't click sketchy links, you wouldn't get hacked LOL". And then I got hacked. I would love to know what exactly it was, but I'll probably never know.
Of course, Jeepguy kind of has a point. Blizzard could be doing so much frigging more on their end to put a crimp on hacking. 2 basic plans right off the bat? Limited login attempts, and capitalization of passwords. Your password doesn't give a shit if your caps lock key is on, and you can type it in incorrectly a million times and it doesn't care. This is BASIC security, FFS. I would love it if there was some info on how many passwords were just brute forced open. My armchair idea on what Blizzard could do to slow hacking?
-Make passwords case sensitive (SERIOUSLY! Why isn't this already?!)
-After say... 10 incorrect login attempts? Lock down the account, and send an e-mail to the account telling them it's locked, but all they have to do is go to the website, login, and click a link to unlock.
In theory, that should completely stop anybody from trying to pound the door open. It might be an inconvenience to have to go to the website and log in from there, but it should be an excellent first warning system that somebody is trying to brute force your password.
If hackers had to brute-force the majority of accounts, it would significantly cut into their bottom line, to the point where it might not even be worth it.
PSN: ShogunGunshow
Origin: ShogunGunshow
Son of a bitch.
(I get annoyed at the same thing for one of the programs I use at work. The only one that requires me to change my password every 30 days).
EDIT: There could very well be a delay - sometimes weeks - between your password getting stolen and getting used. I'm almost certain when my password was stolen was a couple of months before my account was hacked.
Android too iirc.
This is very true, and it's a good reason to change your password regularly.
Unless they make every single non-guard unkillable and let people not be flagged in Capitals, even when coming from PvP zones, this would be a horrible idea.
Ayliana Moonwhisper Ecksus Cerazal
O here they come again for the douchebag
Meh let them hopefully they don't mess with the ah again
I thought someone took a picture of my desk before I saw the little dude at the bottom. I think you and I have the same monitor and very similar desks.