Battle.net Authenticator Changes(Cont. #13)

Technical Support
Post Limit:
Prev 1 16 17 18 19 Next
This is getting incredibly more stupid by the minute. Why is Blizz putting up such a fight against stronger security and good customer service? It doesn't make sense to me.
07/23/2011 06:51 AMPosted by Gallante
This is getting incredibly more stupid by the minute. Why is Blizz putting up such a fight against stronger security and good customer service? It doesn't make sense to me.

because Blizzard stopped being about common sense and started being about the all mighty dollar then they joined up with Activision

Activision is great, for 1player games
but federal and international laws should ban them from touching anything MMO, as they have screwed up and over every one they have ever even looked at
I thought the issue was something on my end but they seriously did this themselves? Honestly i come back after months to wanna leave again now because of this. GG blizz. Wanna turn it back on?
07/23/2011 12:37 PMPosted by Tainarra
I thought the issue was something on my end but they seriously did this themselves? Honestly i come back after months to wanna leave again now because of this. GG blizz. Wanna turn it back on?


Oh yes they did it all on their own. It was implemented a month ago. And they have yet to say anything about it. To hell with this company.
A consolidation of observations about the system and it's implementation. I've tried to include at least one reference for each.

System start date
http://us.battle.net/wow/en/forum/topic/2743697739?page=14#264
Official notice
http://us.battle.net/wow/en/forum/topic/2674529777#1 (deleted)
http://us.battle.net/wow/en/forum/topic/2674529793

A computer may have been marked as authorised before the system went into effect
http://us.battle.net/wow/en/forum/topic/2674980195?page=25#489

Computers marked as authorised may not need to be individually re-authorised
http://us.battle.net/wow/en/forum/topic/2743697739?page=14#278

Computers marked as authorised may not need to be individually re-authorised, even if in different locations
http://us.battle.net/wow/en/forum/topic/2674991820?page=24#474

A change in location and ISP may not prompt for an Authenticator code
http://us.battle.net/wow/en/forum/topic/2674990905?page=25#496
http://us.battle.net/wow/en/forum/topic/2674991820?page=25#485

The WoW client uses a registry key on the client machine to determine if an Authenticator code is required
http://us.battle.net/wow/en/forum/topic/2674990905?page=6#117

The system is designed to prompt for the Authenticator code weekly
http://eu.battle.net/wow/en/forum/topic/2226156035?page=27#536

Blizzard are still advertising the Authenticator as a 'use for every login' device
http://us.blizzard.com/store/details.xml?id=1100000822

There has been no official response from Blizzard on the US forums, but there have been two responses to a much smaller discussion on the European forums
http://eu.battle.net/wow/en/forum/topic/2226156035?page=26#519
http://eu.battle.net/wow/en/forum/topic/2226156035?page=27#536

A player also claims to have tested a proof of concept attack that duplicates the stored registry key onto a virtual machine to allow un-authorised login
http://us.battle.net/wow/en/forum/topic/2743697739?page=15#283


Whilst the registry hack will cause an authenticator prompt at login, this obviously won't effect any other 'authorised' computers.

I would also note that it would be relatively easy for a variant of the existing man in the middle attack to use this registry hack to force an authenticator prompt.

Whilst I acknowledge that there will be issues that Blizzard and I disagree on, I find it very disappointing that they have elected not to respond to player concerns, and even more disappointing that they are now deleting threads.
Blizz needs to understand that's all we want lol. Just give us the darn option to put in the code. Give those who wish to be unsafe the option. But give us the option to know we are safe.
Wayland? I just pinned this thread on your comment and I'm going to link to your post whenever I'm discussing the mess. Nice work!
So, uh, yesterday was Friday, the day I've been prompted for an authenticator code every week since this stupid change was implemented.

I got asked to enter a code last Tuesday, after having just entered it on the preceding Friday. (Same computer, and I didn't do anything different with said computer between Friday and Tuesday.)
I did not once get asked to enter my authenticator code yesterday.

Is this intended?
I honestly don't think it's once a week. I think it's random. And that makes it even more fickle.

i still want to authenticate EACH AND EVERY LOGIN ATTEMPT. Why is that so hard for Blizzard (*cough* Activision *cough) to comprehend?
07/23/2011 05:36 AMPosted by Vallira
I see they have also removed the original thread here and reposted it in the CS forum by someone other than the original poster....

The locked stickey in the CS forum has been there all along, it still has a link to the now deleted original post from this forum. General also had a stickey pointing to that original thread in this forum but they have removed it. I would guess that at least the dead link, and likely the whole stickey in CS, will be removed Monday by the moderators of that forum.

This is one more indicator that they’re no longer looking for feedback on these issues and have made up their minds, although we apparently aren’t to be privy to their decision.
That's sad.
lets see if I can get me a forum ban \o/
Why? You gonna try taking the discussion to the General Forums where it'd be relevant? That's blastphemy to them!
and the blizzard alts and fanbois are flaming it there already
Don't see it. It get vaporized already?

EDIT: NM, I found it and added my 2 copper. Trolls and fanbois indeed. So many good players who knew wtf they were talking about and repeatedly tested this fail of a new system had expired accounts as of July 4th. Before the month is out, there shall be more casualties.

I'm here for now, but if the going gets tough, i feel I may have to get going as well.
Wow....ignorance is bliss. The people in that thread proved it.
What i don't understand is why the people in the General Forum are against an "opt-out". if they want the new system, they can have it and the potential hacks that go with it. I'm not proving anything to them. i only want to show Blizz the system isn't safe for ME, at the least, and allow me to opt out, authenticating EVERY LOGIN.

Join the Conversation