Battle.NET account + Blizzard Authenticator + today = fail

[Klesh]

Nice to see trolls are even on the DB forums now too.

- Souca -

Nice to see WoW general forum whiners are even on DB forums now too. Your post I've quoted one page ago is full of QQ.

On topic:
Yes, the change kinda sucks for multi-boxers who got used to login with all accounts at the same time. Am kinda sure they didn't change it to annoy multi-boxers or cause of some man in the middle attack, such attacks are just not worth it for WoW accounts. Maybe it's been possible to automate the hacking of authenticator secured accounts, I don't know or really care. They've changed it for whatever reason and you got to adapt.

What most seem to forget is blizz is running WoW to make profit. Lots of profit. If players wouldn't be stupid and get hacked all the time (keeping your OS, browser+plugins up to date and NOT visiting stupid sites is hard), they wouldn't have to waste lots of manpower (aka profit) to block, investigate and restore hacked accounts.
They could have said, well, it's your fault for getting hacked so we are charging 100$ to restore an account. That would have been even more QQ, so they keep paying the bill for hacked accounts while trying to go with the best possible security for their "normal" (1 account) users.
Love (or at least accept) it or leave it.

[BobGnarly]

Regardless of whether or not you are "kinda sure they didn't change it because of some man in the middle attack", it is vulnerable to that, so that's as good a reason as any to believe that they chaged it. Your assertion that wow isn't serious enough to warrant a change like this is silly considering that the discussion we are having is regarding a rotating token security system already implemented for wow, which isn't just thrown around for the fun of it. Somebody (both at Blizzard, and their customer base) clearly thinks security is important here, so yeah, they should fix vulnerabilities.

My biggest gripe is the email thing. I don't want my wow subscription email associated with anything else in my life. Call me paranoid, but I know where it can lead and I want no part of it. So, I'm going to have to create one or more new ones just for this, and it irks me - primarily because there's no good reason they couldn't let your bnet account be whatever you want, just like your current wow account. If they are so serious about security, they should hire a good security consultant who would tell them so.

BTW, one thing to keep in mind everybody...creating multiple accounts may get you around the this issue *for now*, but they've been talking about things like allowing heritage items to be passed around all your bnet accounts, so you would lose out on future features like that. Just thought I'd mention it.

[alcattle]

I missed your point. Your E-mail is already tied to an account. Making your Email into your account name, what changes? WoW players still only know toon names not account names. No one can get your account name except Blizzard, nothing changed. In my case, it will help as I set up account on different Emails so they could be problems. Bnet will fix them.

[mebben]

Is it just me or did they change something with the authenticator? I used to be able to log on with all five accounts at once, now it seems the code is only accepted by two windows at most, then I have to enter a new code for two others and so on. Very annoying.

[Khatovar]

I missed your point. Your E-mail is already tied to an account. Making your Email into your account name, what changes?

The point is e-mail addresses are shown on tons of websites, easily found and bought and sold to lists every day. If someone got the e-mail address associated with one of my wow accounts before, all I had to deal with was spam. Now someone gets ahold of it, they've got my userid for all 5 of my accounts. Basically, half of your account information is now for sale, not just for WoW, but any past or future Blizzard product that will be force-tied to Battle.net.

Just because some people are smart enough to realize that you should go out and register an entirely new e-mail account that will never, ever be used for anything but logging into WoW doesn't make this secure. Most people are stupid and would think nothing of registering for random new fansite promising beta invites when they only want your e-mail address. Just ask any of those people that were waiting around for thier "free new beta mount testing Blizzard is would having!" the BIizzdevjtiwyr told them to go register for when they got booted off and couldn't get back on. Most people will probably use the same address they've been using since they started playing WoW because that's where all their notifications for WoW crap goes.

[alcattle]

Thank you. I see the point now. I have so many accounts and use different Emails and name, I will know where they got that set of information. But you are right, we are talking about smarter then your average (feral) bear on DB.com, and I have to remember the 50% of WoW users that have trouble spelling their names.

[Khatovar]

On the plus side, you can change the battle.net e-mail address, which is a luxury you don't have with the old userid, so if you signed up with an address that you've used elsewhere, find spam in a new one or have another reason to believe it may be compromised, you can just get a new address and change over.

But still, it's an e-mail address and I dread the weeks following the full changeover. It's going to be back to 10 spam whispers a minute from compromised accounts.

[Coltimar]

Is it just me or did they change something with the authenticator? I used to be able to log on with all five accounts at once, now it seems the code is only accepted by two windows at most, then I have to enter a new code for two others and so on. Very annoying.

That is the whole point of this post. You should read it. It has drama, suspense, even a little comedy.

[mebben]

That is the whole point of this post. You should read it. It has drama, suspense, even a little comedy.

I'll get some popcorn and see if someone posted a summary somewhere.

[vikemosabe]

I have been using an authenticator for about 6 months now and it NEVER let me login with more than one character at a time.