forums.rs

Forums

RuneScape Authenticator & JAG

Quick find code: 294-295-312-65407796

of 21
Dark Helmet

Dark Helmet

Posts: 21 Bronze Posts by user Forum Profile RuneMetrics Profile
I would still like to see JAG stay around and have authenticator be an additional line of security. Why the heck do I have to re-authenticate my account every month?!? That would be super annoying. Additionally - as I said before - what happens when somebody steals your smartphone? Most people have all their emails and account information stored in those things. So with Jag, that would have no effect at all. Somebody would have to physically break into your home and steal your computer for it to work - and even then once the IP changed it would still fail to work. With Authenticator, if they steal your phone, they'll could gain access to your emails which would make it super easy to authenticate your account. More secure? Seems much less secure to me, unless it's used in conjunction with JAG. I mean, doesn't it seem totally ******** that you need to use two different devices to log into a game on one device?!? Am I the only one here that thinks that's dumb? Unless it is used in conjunction with JAG, it appears to me as if you're backtracking on security and turning your back on half the population who don't have two computers or a smart phone. So I'm asking the developers to please please keep JAG and allow us to choose whether or not we want authenticator in addition to JAG. Don't replace it. I always have coffee when I watch radar!

03-Jul-2014 01:10:53

T V O

T V O

Posts: 12 Bronze Posts by user Forum Profile RuneMetrics Profile
I recently switched internet providers, so my ip changed. Because of that i had to fill in my jag again, which is not a problem because i have them written down. But for some reason every time i fill in a correct answer it takes really long for the page to load, and eventually thinks its wrong. so i am stuck with a 24 hour restriction. I really want to play and im 100% sure i filled in the right answers. So i was wondering if someone else is having the same problem, or its just me. I hope someone can help me, Because i really hate waiting the 24 hours :(

04-Jul-2014 20:17:10

Runefloors

Runefloors

Posts: 1,288 Mithril Posts by user Forum Profile RuneMetrics Profile
Proselyte said :
Could you explain how

­­Authenticator is a safer , more straightforward solution to account security­­

While Authenticator is a very good system and it should suffice, it's weaker than JAG. If you have JAG, an attacker would need your secret word, access to your email account AND your recovery questions. With Authenticator, having your secret word and access to your email account is enough since they can reset Authenticator through your email.

If your email account is compromised, then JAG still (somewhat) protects you by the security questions, while with Authenticator your account is done for. How is it more secure?

Of course we should have 2-factor authentication on our emails, and if we do, Authenticator is great and I think replacing JAG is a great idea but we should be accurate in what we say :p

I couldn't agree more.

04-Jul-2014 22:49:33

LVXIII

LVXIII

Posts: 694 Steel Posts by user Forum Profile RuneMetrics Profile
Honestly, the added potential for breaches combined with the potential for the Authentication Apps to glitch is just not worth it. What was so wrong with JAG. Please continue to allow full support and access to JAG for those of us who have more faith in answers only we know than something like an app that can be hacked.

05-Jul-2014 02:26:25

VoidLordXian
Sep Member 2007

VoidLordXian

Posts: 1,037 Mithril Posts by user Forum Profile RuneMetrics Profile
IF
Jagex Account Guardian (JAG) goes away,
WILL
there be a system of authentication for those
WITHOUT SMART PHONES
?

And let me take it even one step further: for those without texting.

Could an automated system be set up that actually "calls" you and gives you the number? My email does that, (if I forget my pass they call and give me a confirmation number that I must enter to be able to reset my pass.)

05-Jul-2014 16:46:26 - Last edited on 05-Jul-2014 16:46:53 by VoidLordXian

David4428
Feb Member 2019

David4428

Posts: 11 Bronze Posts by user Forum Profile RuneMetrics Profile
Proselyte said :
Could you explain how

­­Authenticator is a safer , more straightforward solution to account security­­

While Authenticator is a very good system and it should suffice, it's weaker than JAG. If you have JAG, an attacker would need your secret word, access to your email account AND your recovery questions. With Authenticator, having your secret word and access to your email account is enough since they can reset Authenticator through your email.

If your email account is compromised, then JAG still (somewhat) protects you by the security questions, while with Authenticator your account is done for. How is it more secure?

Of course we should have 2-factor authentication on our emails, and if we do, Authenticator is great and I think replacing JAG is a great idea but we should be accurate in what we say :p

I agree with you, I think JAG is safer than authenticator but it's still pretty good, I just want something that garantes my account safety.

08-Jul-2014 04:55:25

David4428
Feb Member 2019

David4428

Posts: 11 Bronze Posts by user Forum Profile RuneMetrics Profile
Well... Sillikers I think you can, but that does not seem, in my point of view , a safe way to protect your account, because, I mean a Smartphone of your own its pretty difficult to someone stole you the information of your authenticator, but on a memory stick there are a lot of ways to copy the file of the authenticator program from your memory stick, in my opinion , I would recommend you to keep JAG on your account, because its a good way to keep your account protected until you can buy a cheap smartphone to get the authenticator.

Cheers!

08-Jul-2014 05:02:07 - Last edited on 08-Jul-2014 05:04:40 by David4428

Quick find code: 294-295-312-65407796 Back to Top