User:Aichon/Sandbox/Archive 2009

From The Urban Dead Wiki
< User:Aichon‎ | Sandbox
Revision as of 09:36, 23 October 2009 by Aichon (talk | contribs)
Jump to navigationJump to search

WIP Suggestions

Password Change Option

Timestamp: Aichon 04:18, 4 October 2009 (BST)
Type: Interface/settings change
Scope: All players
Description: Currently, there does not exist a means to change the password for a character. This can be problematic if a person's character gets "hacked" or if a person simply wishes to better secure their account by changing the password from time to time. I would like to propose that a typical password change option be added to the Settings page. It would prompt for your current password, your new password, and then for you to confirm your new password. In addition, a "veto" e-mail message would be sent to the e-mail address that is on file whenever you change your password or e-mail address. This e-mail message would provide a link (valid for a few days) that could be used to undo any changes that might have been made by malicious parties accessing your character's account.

Note: The suggestion description has changed since some of the comments in the discussion were made.

Discussion (Password Change Option)

You'd need a qulaifying question, otherwise if I have your password, I could use this to take over your character and change the password, so you couldn't use it at all. --RosslessnessWant a Location Image? 09:48, 11 October 2009 (BST)

Excellent point and it's definitely something I overlooked. Rather than a challenge/response though, something more passive might be in order, since the common case would be people changing their own passwords. For instance, perhaps it could be set to send an e-mail to the account on file whenever the password or e-mail address is changed, and that e-mail could provide a link that could be used to veto the change. I've seen a similar system on another website, and it seems to work well while requiring less of its users than a challenge/response system would. Then, the only way to compromise the account would be to compromise both the e-mail and the account's information. Aichon 10:40, 11 October 2009 (BST)
Hope you don't mind my comment. Having a reset password option tied into an email account would be good. Also it might even cut down on zergers a tiny little bit. Are you going to take this idea to Developing Suggestions?--GANG Giles Sednik CAPD 10:51, 11 October 2009 (BST)
Don't mind one bit, and yep, I'll take it there eventually. I thought of the idea the day before I left on a week-long cruise, and didn't want to post it to Developing Suggestions while I was away for that long. I'll probably post it sometime this week, assuming that nothing else comes up that keeps me away from a computer. Aichon 16:14, 11 October 2009 (BST)

This was posted to Developing Suggestions a few days back. Aichon 10:35, 23 October 2009 (BST)



Soldiers of Crossman Recruitment Advertisement

Moved the work over to here instead.