creepbyradiohead wrote:while i appreciate the sentiment and agree that new security protocol needs to be put in place (which nick said he's working on), i feel like this suggestion would be far too tedious especially for players who trade a lot. to have to put in a pin everytime you accept a trade would be frustrating and there's still a chance of that pin being compromised as well. i agree with the 2fa authentication that many people have brought up, so i don't think we would need anymore protocols that might not benefit everyone in the long-run if 2fa is put in place.
Darni wrote:Edit: The pin would be optional for people who don't want 2FA or want something within the site specifically so they don't have to open up something on phone or anything like that
Darni wrote:Edit 2: This would not be for editting trades or starting edittable trades. This would be for ACCEPTING the trades. If you select "Ask them to accept the trade" when you start / begin / first send a trade then it will prompt you with a pin. So you could edit and suggest back and forth without putting a pin in.
mech wrote:no support. i understand the sentiment but even if this was implemented it seems pointless? why would you need to enter a pin to accept the trade. it doesn't stop people from giving away pets from hacked accounts that are not theirs. it doesn't stop access them from accessing pets and trading them. it just becomes more cumbersome for people to accept trades if they have it enabled. it would make more sense to have this pin for when you start up a trade, but still it seems useless on older accounts that lack a set pin. the hacker can just get in and set it to whatever. either way the problem isn't about trades, it's about compromised accounts and how easy it seems to be able to just get into them.
having 2fa on sign in would be a better option, because it actually limits people from getting into accounts. another option is that old, inactive accounts get 'locked' so that you much go through cs staff to reinstate the account. this adds a layer of human confirmation, possibly cutting down on the number of hacks.
i don't hate the idea, i wouldn't care if it were added but i wouldn't use it. overall it just seems pointless and flimsy at best.
creepbyradiohead wrote:for the record i'm not ignoring the edits - i respect your ideas and how they can be lenient towards people who may not support the enter pin suggestion. but i personally doubt that if they did implement this feature, it wouldn't be something that you would pick-and-choose, if that makes sense. it wasn't my intention to upset you or anything, i apologize if i did.
Darni wrote:I'm not upset it just seemed from your message you might have missed that part. Neopets, Epic Games, many other games have this feature as an OPTION. Having multiple options for ways to protect yourself are important. We shouldn't be settling for just one 2FA because what if the authenticator is compromised, what if someone is a minor and it requires a phone to log in and now the minor needs to use their phone to log in from new place, what if someone is using their parents email then they have to go run to them asking to open their email so they can log into the game. There's also people who don't like 2FA when it isn't an on-site feature because they don't wanna tab out or go pull out their phone and have 15-30 seconds to type a code. 2FA isn't for everyone and for the people who don't want to use it they can still protect their account from trading their stuff away with this.
creepbyradiohead wrote:-snips-
Users browsing this forum: No registered users and 1 guest