Skelris
|
  |
| Joined: 02 Jan 2009 |
| Total Posts: 4785 |
|
|
| 29 Mar 2016 01:33 AM |
Account theft on ROBLOX has been an issue since the beginning of ROBLOX. Some cases where a user's info is guessed, granting someone else into their account. Though adding an E-mail to your account can surely help, it doesn't always prevent damage from being done.
Once someone accesses your account, they may just be on it out of anger, deleting all your stuff. The work it would take for ROBLOX to give you your stuff back, if they even come to the conclusion that they should, is more work than what should be done.
So getting to the point, my idea is a two-step login process. To begin, the feature would be 100% optional, and would not effect your account until it is verified by a test login that you understand how the system works.
To put it simply, if you turn on double-step account security, every time you log in a code is sent to your E-mail. That being said, you obviously must have an E-mail attached to your account before you can enable this feature.
Once you get by the login screen, you are taken to a screen where you must enter a code. This code would expire after a set amount of time, which would likely be two minutes. Alternatively, you can click a button to send a new code in case the first didn't send. The first code will no longer work, and you must insert the new code you were Emailed. As well, if your account is logged into again from the login screen, a new code is sent, disabling any code that may still be usable to log in.
The purpose of this is that, if someone somehow gets access to your account, they must have access to your E-mail too for them to really get into your account. The end result is, as long as you're careful with your info, your account is much safer. |
|
|
| Report Abuse |
|
|
BurnSane
|
  |
| Joined: 22 Dec 2013 |
| Total Posts: 1619 |
|
|
| 29 Mar 2016 01:35 AM |
no need
just get a good unbreakable parseword
so, get out. |
|
|
| Report Abuse |
|
|
Skelris
|
  |
| Joined: 02 Jan 2009 |
| Total Posts: 4785 |
|
|
| 29 Mar 2016 01:39 AM |
I've never had issues with this personally.
Elaborate on how there's no need for this. Saying there's no need without a good explanation for it is not a very good argument. |
|
|
| Report Abuse |
|
|
|
| 29 Mar 2016 01:41 AM |
support this will prevent those "Free ROBUX" scams (unless some guy is checking recent logs 24/7 and makes the "code" thing somehow in his website)
всё хорошо) /translation/ Everything is http://chat.roblox.com/ :) |
|
|
| Report Abuse |
|
|
BurnSane
|
  |
| Joined: 22 Dec 2013 |
| Total Posts: 1619 |
|
|
| 29 Mar 2016 01:43 AM |
here yo go
A account should not have a parseword that is very easy to guess, because that lets more and more people crack into the account with ease, with this it just puts more strain into the account owner than the cracker, and since this needs a email, the people without an email are royally screwed over. |
|
|
| Report Abuse |
|
|
Skelris
|
  |
| Joined: 02 Jan 2009 |
| Total Posts: 4785 |
|
|
| 29 Mar 2016 01:45 AM |
How does this put more strain on the account owner? It's an optional feature. It isn't forced, and thus is the choice of the creator.
Users can fall for scams that involve them putting their info in a third-party site. Whether or not it's their fault for trusting it isn't the point. The point is user satisfaction, and part of that is helping them keep their account secure. |
|
|
| Report Abuse |
|
|
|
| 29 Mar 2016 01:46 AM |
"should not have a parseword that is very easy to guess" what if there is a 10 year old with OBC who wants the "free robux" and he gets scammed? having a complicated parseword isn't that helpful now is it?
"the people without an email are royally screwed over." they already are screwed over, because they can't post comments, can't post in forums and can't send messages
valve uses this security for their steam platform and they did it really good, they check if something is different (like the IP, computer, etc) and if anything is slightly suspicious they ask for you to enter a code
всё хорошо) /translation/ Everything is http://chat.roblox.com/ :) |
|
|
| Report Abuse |
|
|
|
| 29 Mar 2016 01:48 AM |
oh and the 2 step verification should be a forced feature if your e-mail is verified
всё хорошо) /translation/ Everything is http://chat.roblox.com/ :) |
|
|
| Report Abuse |
|
|
Skelris
|
  |
| Joined: 02 Jan 2009 |
| Total Posts: 4785 |
|
|
| 29 Mar 2016 01:50 AM |
"valve uses this security for their steam platform and they did it really good, they check if something is different (like the IP, computer, etc) and if anything is slightly suspicious they ask for you to enter a code"
I never thought of the code not being a thing if it's the last IP that signed in. Wish I had that in mind before posting.
As well, I guess after a few failed login attempts, even from the usual IP the user should have to go through the code process. |
|
|
| Report Abuse |
|
|
dej240000
|
  |
| Joined: 09 Apr 2015 |
| Total Posts: 27 |
|
|
| 29 Mar 2016 03:36 AM |
| very good, should be optional, it doesnt hurt to add a extra layer of security for those who seek it |
|
|
| Report Abuse |
|
|
dej240000
|
  |
| Joined: 09 Apr 2015 |
| Total Posts: 27 |
|
| |
|