EDITED. Need an option to hide @ID. Its not safe for the account owner. Its a really bad idea.

jpsgamingb14_ESO

EDIT - To clarify. If ESO ONLY allowed you to use your own email to log into the game then I wouoldnt have a problem. Cause then in game there would be no issue showing your ID since its not used as part of the login process....only your email that no one can see would be used for logging.

---

There needs to be an option to make a nickname for the ID. Like its still there but its hidden from everyone's site.

The ID I'm told is the reason we can be in multiple guilds and phase to other friends and so on.

Still though using the in game ID is stupid and dangerous since thats already half the battle won for any account hacker.

Also another thing is if you right click and ignore someone or report and some other things via the chat system it will show their ID as well.

Many account hackers can do this to random players to get their ID and then that's already half the work done and can move right into breaking the password.

Did Zenimax information security team not think of this when they were incorporating this idea? Or do they even have a security engineer?

dbennett707cub18_ESO

This was my first thought as well.

Innocente

Yes. This is a serious issue that needs to be fixed ASAP. Especially since ZeniMax/Bethesda advises folks to NOT SHARE THEIR ACCOUNT INFORMATION with others ! ? ! ?

merwanoreb17_ESO

The good thing though is that if you act like a total jerk, people will know who you are. Can't log onto an alt and be an idiot.

Monsoon

I am not joining any guilds until your account name is hidden

Monsoon

merwanoreb17_ESO wrote: »

The good thing though is that if you act like a total jerk, people will know who you are. Can't log onto an alt and be an idiot.

Yeah, that is called managing for the exception and its irrelevant. People who want to be *** will have a second account that they can throw away if needed

AlexDougherty

f2pmmogamescub18_ESO wrote: »

Yes. This is a serious issue that needs to be fixed ASAP. Especially since ZeniMax/Bethesda advises folks to NOT SHARE THEIR ACCOUNT INFORMATION with others ! ? ! ?

Agreed, showing the actual ID is a bad idea, even a random selection of numbers/symbols would be better.

Saerydoth

No, the @id is fine. It's no different than Blizzard's Battletag system (everyone can see your battletag). What I would like though, is for Zenimax to change the game login system to use your email address instead of the @id (once again, exactly like Blizzard does).

Innocente

@Saerydoth.
Yes, but with Blizzard's RealID system, I can OPT OUT of it and completely hide my real identity from everyone. It is not optional in ESO. Sorry, some of us don't want our real identity, or half our account information, shared with gold farmers.

Saerydoth

f2pmmogamescub18_ESO wrote: »

@Saerydoth.
Yes, but with Blizzard's RealID system, I can OPT OUT of it and completely hide my real identity from everyone. It is not optional in ESO. Sorry, some of us don't want our real identity, or half our account information, shared with gold farmers.

ESO doesn't reveal your identity or your real name. It reveals your @id, which is *exactly* the same thing as your Blizzard battletag. I do agree that ALSO using the @id to log into the game isn't the greatest idea, and should be replaced with the email address for login purposes. But yes, Zenimax should change the game login system, to use your email address instead of your @id.

But the @id itself is fine. Btw, you cannot opt out of the Battletag system in WOW if you were wondering.

Alether

Just use a more secure password to compensate for people already having half of your login information. It's not that hard.

Moonchips

Don't forget, you can only login to your account from your IP address. So even if they managed to get your password somehow, they'd still be stopped by the IP issue. There are other MMOs that do the same thing and I'm sure they've thought of these problems too.

Nephys

"But the @id itself is fine. Btw, you cannot opt out of the Battletag system in WOW if you were wondering."

No, but you can chose not to accept friend requests from people, and thus they will not see or learn you tag. You cannot, within ESO, stop people from seeing it if they block you.

Requielle

I would be less nervous if there was an authenticator (just like Blizzard has for their BattleTag accounts). This game is way, way too high on hackers' lists to not want additional security.

Allumis

The @ID system itself is fine and helps prevent people being ass hats with their accounts.

The login ID being your @ID however is pure lunacy. Why would anyone ever want to give out half of their account info?

It needs to be changed to your email address to log in rather than a visible ID everyone can see.

Saerydoth

Allumis wrote: »

The @ID system itself is fine and helps prevent people being ass hats with their accounts.

The login ID being your @ID however is pure lunacy. Why would anyone ever want to give out half of their account info?

It needs to be changed to your email address to log in rather than a visible ID everyone can see.

That's exactly the way I see it.

Roibeard

You don't really need to see the ID to ignore a complete account. An account wide ignore function could be implemented without exposing the actual ID.

Victoria_Marquis

We agree the chat should only show your currently playing character's name and not your log in ID. A hacker is half way there, everyone now has your log in ID if you talk in chat, now all you have to do is use a fishing bot or some other keystroke warm to get your password and your done. your account is hack and you become a gold farmers auto bot spamming chat and looting nodes. Not to mention they can empty your credit card or bank accounts.

They do have a small safety feature that if you log in on a different PC or IP address they lock your account and you have to use a code sent through mail.

Still that's not safe enough, so please lets not show our log in ID.... Also now that everyone knows our Log in ID's please allow us to Change our ID's like we change our Passwords.
Thank you for your time

MajikMyst

This is why I won't use a credit card to subscribe.. It can't be good to give would be hackers 50% of your login info..

cTreK421

I hope you never share your email address. Giving away almost all the secrets if you share that.

There is no security flaw from this. It is exactly like sharing your twitter handle or email address.

they just need to add two step authentication for worried folk.

Nephys

"This is why I won't use a credit card to subscribe.. It can't be good to give would be hackers 50% of your login info.. "

And if you were forced to do it by Zenimax to access your 30 included game time, do remember to change the address in the billing section to something fictional if you subsequently cancel your subscription. Zenimax keep the address details even if you do that.

Elsonso

I cannot say this enough:

Just knowing your account name does not reduce the security of your account.

The username and password form of authentication is designed, from the ground up, on the assumption that the username is public knowledge.

You cannot keep your username more secure than your password. You simply cannot, no matter how hard you try. Your username will always be less secure than your password. Always. It will be the first, and easiest, part of your identity that any hacker can get, no matter how you try to hide it.

In order to properly secure your accounts, you must assume this for every single account that you hold, without exception. You must realize that your username is not part of the security of your account and you must not ever decide to make it so. The attempt would be pointless and futile.

Now.... let's talk about public usernames and PRIVACY because that is an entirely different story. The '@'ID scheme in Elder Scrolls Online steals privacy from the users. Different characters can be linked to a single account, stalkers can follow characters by username and there is no place that one can hide.

This is why I do not give out by Battle Tag ID for Blizzard games. Elder Scrolls Online robs me of control over who can stalk me by making it too easy to follow my '@'ID

Alpha_Protocol

They should allow an @Alias that identifies your account but DOES not have anything to do with login.

Nephys

@lordrichter You and I both on the Battletag and the even more neferious RealID. Sometimes I like to play quietly, but I am not allowed a quiet character if I add someone as a friend, or join a guild. This is more of an irritant, but the stalker element is the malevolent side and the lack of privacy afforded by the current system leaves much to be desired.

tw1jaysin

GW2 has had the same system for 18 months and it's not been an issue.

Nephys

@tw1jaysin That depends on your experience, I personally have found that in terms of a lack of privacy it has.

jpsgamingb14_ESO

Saerydoth wrote: »

No, the @id is fine. It's no different than Blizzard's Battletag system (everyone can see your battletag). What I would like though, is for Zenimax to change the game login system to use your email address instead of the @id (once again, exactly like Blizzard does).

you got that wrong.

The battletag system was made by blizz so people could choose their own cross realm account name so it would not match their real ID.

RealIID - real account
- Battletag - made up account to act like real ID but hide your true account name

jpsgamingb14_ESO

Also yes the @ID is good for preventing trolls but many people had no idea about this so in Guild chat we dont even know what the character is for that ID...kinda feel like everyone in guild has a double.

Also doesnt guild wars 2 use your email to log in and then your ID is in game only and forums? thats how it was when I last played.

If ESO required your email ONLY to log in and no give you the option of using your ID then i wouldnt have a a problem.

Spacemonkey

Ummm ... I now know all of your forum ids and will proceed to hack your accounts one after another?

What the heck people, paranoid much?

Monsoon

[post deleted by user]

cubansyrusb16_ESO

This isn't a new thing a lot of games use it, I have never been hacked .... ever