Added Layer of Security: Steam Thumbdrive

[L.o.D.]

Quote:

Originally Posted by Sly_Squash

When a person logs into your steam account, they are assuming your identity to do so. They are authenticating to the system as if they are you. Hence it is a form of identity theft.

Nope. They have no idea what my real name is or anything to do with my real name.
All they may know is my account name which has nothing to do with the real me.
They can log in all they want, they won't find my real ID.

Sorry, but my steam account name is not my identity.
They couldn't do a damn thing with that in regards to stealing my identity.

I am sorry, but you are starting to sound a lot like someone that is overly paranoid about identity theft.

[Gone'Postal]

Quote:

Originally Posted by Sly_Squash

Meaning if they hacked your validation email that does the forwarding they could undo the forwarding anyway, meaning the forwarding isn't buying you anything at all.

Yes commit a crime by hacking a professionally hosted domain...

I could get run over by a bus as well, do you sell bus proof coats?

[L.o.D.]

Quote:

Originally Posted by Gone'Postal

Yes commit a crime by hacking a professionally hosted domain...

And all that just to get a steam account.

Like I said before, REAL hackers won't waste their talents on such petty crap.

[Sly_Squash]

Quote:

Originally Posted by L.o.D.

Nope. They have no idea what my real name is or anything to do with my real name.
All they may know is my account name which has nothing to do with the real me.

They can log in all they want, they won't find my real ID.

I'll make this simple for you

Outlook express isn't secure. Sorry.

Quote:

Originally Posted by L.o.D.

Sorry, but my steam account name is not my identity.
They couldn't do a damn thing with that in regards to stealing my identity.

You have it backwards. Because they steal your identity they are able to login to your steam account. Not the other way around.

Quote:

Originally Posted by L.o.D.

I am sorry, but you are starting to sound a lot like someone that is overly paranoid about identity theft.

Please don't make me repeat myself anymore, but I don't care that you think that you are sufficiently secure. I want better security on steam. If you don't care, then stop trolling threads from people who do care. If you can't be productive in generating ways to make steam better, then... go away?

Quote:

Originally Posted by Gone'Postal;2032
5327

Yes commit a crime by hacking a professionally hosted domain...

Because its completely infeasible that a hacker would commit a crime.

Quote:

Originally Posted by L.o.D.

And all that just to get a steam account.

No. All that just so they can get squeeze anything they can get out of their victims.

[L.o.D.]

Quote:

Originally Posted by Sly_Squash

You have it backwards. Because they steal your identity they are able to login to your steam account. Not the other way around.

Again, as I stated before, my account name is NOT my identity. Nothing can be done with that name to financially hurt me. They cannot do squat to me with that name, other than try to get my steam account. My account name also does not reveal my real name or home address etc etc.
Sorry, but you ARE paranoid if you think that.

Quote:

Originally Posted by Sly_Squash

Please don't make me repeat myself anymore, but I don't care that you think that you are sufficiently secure. I want better security on steam. If you don't care, then stop trolling threads from people who do care. If you can't be productive in generating ways to make steam better, then... go away?

So I'm trolling because I might have negative opinions?
Sorry, but this is not trolling by a long shot.
You aren't going to get everyone to agree to everything you have to say, which is obvious.
This is a public forum, we can post whatever we want, as long as it doesn't break the rules.
No one here has broken anything.

Maybe we don't care that you don't care if we believe to be secure in our online practices.
You don't know us from a hole in the ground on how or what we do to protect ourselves.
Obviously we are doing something right since we've never been jacked, got infected, got our real ID stolen.
I don't plan on any of the above from ever happening, so I will continue in my practices.

[Gone'Postal]

Quote:

Originally Posted by Sly_Squash

Because its completely infeasible that a hacker would commit a crime.

Someone hacking a hosted domain just to gain access to an E-mail box just to reset a steam account password has about the same chance as your idea being put into practice.

but keep up the good fight, I'm looking forward to seeing how low in the barrel you can get trying to show your idea is better then what we have now if it's used in more then just the basic way.

[Sly_Squash]

Quote:

Originally Posted by L.o.D.

Again, as I stated before, my account name is NOT my identity. Nothing can be done with that name to financially hurt me. They cannot do squat to me with that name, other than try to get my steam account. My account name also does not reveal my real name or home address etc etc.
Sorry, but you ARE paranoid if you think that.

I said I wouldn't repeat myself so... I won't.

Give you a hint though. Backwards.

Quote:

Originally Posted by L.o.D.

So I'm trolling because I might have negative opinions?
Sorry, but this is not trolling by a long shot.
You aren't going to get everyone to agree to everything you have to say, which is obvious.
This is a public forum, we can post whatever we want, as long as it doesn't break the rules.
No one here has broken anything.

You're trolling because you are increasing the signal to noise ratio of the thread. The thread is about enhancing steam security; those who believe steam is sufficiently secure need not apply. Valve can decide if which suggestions are most effective, cost-effective, or feasible. Insisting "it's fine as it is because I haven't been hacked (yet?)" isn't helpful. It's antiproductive. It's destructive. It's trolling.

Quote:

Originally Posted by L.o.D.

Maybe we don't care that you don't care if we believe to be secure in our online practices.
You don't know us from a hole in the ground on how or what we do to protect ourselves.
Obviously we are doing something right since we've never been jacked, got infected, got our real ID stolen.

I said I wouldn't repeat myself so I won't.

Hint: woodworking.

Quote:

Originally Posted by L.o.D.

I don't plan on any of the above from ever happening, so I will continue in my practices.

Have fun with that. Bye now.

Quote:

Originally Posted by Gone'Postal

but keep up the good fight, I'm looking forward to seeing how low in the barrel you can get trying to show your idea is better then what we have now if it's used in more then just the basic way.

Allow me to quote a moderator who assessed my suggestion.

Quote:

Originally Posted by Matt

This is one of the top suggestions posted.

Good enough for me in showing my idea is better than what is currently in use!!

[L.o.D.]

Quote:

Originally Posted by Sly_Squash

I said I wouldn't repeat myself so... I won't.

Give you a hint though. Backwards.

False. You are confused.
Prove me wrong, if you can.

Quote:

Originally Posted by Sly_Squash

You're trolling because you are increasing the signal to noise ratio of the thread. The thread is about enhancing steam security; those who believe steam is sufficiently secure need not apply.

I am posting my opinions along with anyone else that has full rights here to do so, whether they agree with you or not.

Quote:

Originally Posted by Sly_Squash

Have fun with that. Bye now.

Not sure why you think anyone but yourself is secure in their online practices.
Unless of course, you think you are better than anyone here?

Quote:

Originally Posted by Sly_Squash

Allow me to quote a moderator who assessed my suggestion.



Good enough for me in showing my idea is better than what is currently in use!!

But that doesn't mean he agrees nor disagrees with you.
It just means it's been suggested before.
Hell, look at the thread start date, if you hadn't noticed.
It was started in 2008 & has not been implemented.
That alone should tell you something.

[Gone'Postal]

Quote:

Originally Posted by Sly_Squash

Good enough for me in showing my idea is better than what is currently in use!!

Your point ?

Good enough for the other view and people who disagree with you as well, as it appears.

[L.o.D.]

Quote:

Originally Posted by Sly_Squash

No. All that just so they can get squeeze anything they can get out of their victims.

Then they will do what it takes to gain access to that thumbdrive as well.

[Sly_Squash]

Quote:

Originally Posted by L.o.D.

False. You are confused.
Prove me wrong, if you can.

can't. said I wouldn't repeat myself. already referred you to that information.

Quote:

Originally Posted by L.o.D.

I am posting my opinions along with anyone else that has full rights here to do so, whether they agree with you or not.

Your opinion is noted. You believe you are secure enough as is and further security systems aren't necessary. What more do you feel you are contributing?

Your opinion has been heard. Since you don't believe steam needs more security I don't see you contributing ideas for improving security. Hence I don't understand what you think you are accomplishing here. We've heard that you think that you are secure enough with a password system. What more do you want?

I disagree. I want more, and I'm willing to discuss ways to make it better. That's all there is to it.

Quote:

Originally Posted by L.o.D.

Not sure why you think anyone but yourself is secure in their online practices.

Where did I say that I think I am secure? I'm on record several times of saying no one is ever completely secure. There are always chinks in the armor. Sound familiar?

Quote:

Originally Posted by L.o.D.

Unless of course, you think you are better than anyone here?

Not better, but perhaps better versed in computer security. I'm a doctoral student in computer science who has taken several courses in computer security at the graduate level. Our research group works with NASA in testing and improving ITAR-tagged networking protocol implementations (meaning if someone broke into our systems, stole the code, and there was reasonable negligence on my part I would go straight to jail). Part of what we test in the networking protocol, btw, just happens to be security.

So yes I feel I know a thing or two about computer security. But if you feel you have better background in this area, let's hear your story.

Quote:

Originally Posted by L.o.D.

But that doesn't mean he agrees nor disagrees with you.
It just means it's been suggested before.
Hell, look at the thread start date, if you hadn't noticed.
It was started in 2008 & has not been implemented.
That alone should tell you something.

I'm not exactly throwing myself behind the original thumb drive idea, but I still feel good things can and have come from this thread.

Quote:

Originally Posted by Gone'Postal

Your point ?

Good enough for the other view and people who disagree with you as well, as it appears.

You know that the thumb drive idea wasn't my idea that I was referring to, nor like I just said do I support it...

I was talking about the public/private key suggestion.....

[L.o.D.]

I have never once stated ever, that I was against more security.

That is what's so great about the internet. We can claim anything we want.
You can claim all you want, but my steam account name will NOT lead you to my real name.

Obviously, I must know a few things about computer security since
A: Never been hacked.
B: Never been infected other than a useless netdetect that did nothing but break netdetect.
C: Never had my identity stolen since first going online back in 1995-ish.
D: My computer has never been compromised in any way.

Just because you THINK that our steam account name is the same as our real name, doesn't make it true.

[Sly_Squash]

woodworking.

[Gone'Postal]

Yes I'm aware of that, Increased security for the steam client is posted a lot on here one way or another.

Security is security is it not? and at least the thumb drive tries to stop losing it in the first place, and that's not convincing people either.

Also, Matt was on about the SecurID system, which isn't your PGP idea either.

& I've spent 3 years on and off with that SecurID system or clones of it, they still suck.

[Sly_Squash]

No. He said my idea was excellent, but that securID was the security mechanism currently under most scrutiny.

In any event, securID is fine by me! What do you feel is so bad about them?