Website & forum behaviors

[Terboh]

So I read somewhere that some banned accounts are "under investigation." Is there going to be an "un-ban wave" at some point then? If so, will there be an announcement for it?

[elandriel]

An important aspect that is being overlooked is that many innocent players seem to have been caught as collateral damage in the ban waves that are going out and so far, there have been no responses from staff even acknowledging the issue.

Quoted for truth.

[abbath]

1 minute ago: this chinese OKO***S still spamming with private messages... =\
and they did that right after i logged in!!!
may be its fantastic offer, but i think its time to contact their sites hosters and appeal the ABUSE to close that fcuking sites! no site = nothing to advert in game with a spam.

[Imbaslap]

https://twitter.com/NostalBegins

NostalriusBegins ‏@NostalBegins · 8h8 hours ago

If you have a non-changing IP, you now can lock your account to your current IP with the command ".account lock [on|off]"



can this be confirmed by the staff as working and correct? would've been nice to have this 1 year ago that's for sure.

also, how does this fair if your IP changes from your network provider and what playerbase/location will not benefit from this security feature?

[JCarrill0]

So I read somewhere that some banned accounts are "under investigation." Is there going to be an "un-ban wave" at some point then? If so, will there be an announcement for it?

I got one... viewtopic.php?f=65&t=38360
(all I wanted was a chance to prove my innocence.)
I'm sure this is the same result for many accounts, I don't imagine we will any un-banned unless they see that it wasn't our fault.

I was well known on the RP section, and also on the Paladin section, (I even had stickies index and Guides across 3 sections on these forums). I like this server, and pretty damn loyal. I even have a Facebook Page that helps promote my gaming on Nost, but it means little now.. all cuz of a hacker.

I just hope they can get some better clarity on this tragedy to many players, not just myself!

[Sil]

You know what would be handy is if the password reset actually worked

It does.

Visit https://en.nostalrius.org/password to change your password.

You will only get an email if your account has one attached.

You also have to be logged out of the en.nostalrius.org website to get the reset to work.

What about the poor people that didn't have an email associated with their account?

That's exactly my problem too! Email was not required when I created the account.

[metrolol]

On our side, we have taken the following actions:
- the number of possible login attempts has been drastically reduced to 1 per minute
- it is only possible to login on the website from your last in-game IP-address. We took this decision because it should not affect a lot of players, and will make these kind of attacks more difficult in the future

Isn't this the opposite of what needs to be done? Were people actually accessing the website who were stealing our accounts, taking our gold, then getting us banned because the nost staff is too oblivious to realize this was some coordinated attempt, and not the account owner's fault?
If anything, the last IP that logs on the website should be the one that can only log on to the account, essentially creating an Authentication system.

But either way, its pretty irrelevant. The damage has been done.

[Imbaslap]

https://twitter.com/NostalBegins/status/711227799923597313

more security features for players it seems.
still waiting on the big forum announcement though.
not sure how this affects VPNs or anything like that.

[Terboh]

https://twitter.com/NostalBegins/status/711227799923597313

more security features for players it seems.
still waiting on the big forum announcement though.

A little late for that for the majority of us unfortunately.

[Imbaslap]

I know what you mean.. would have been 100x better if we had that type of feature at launch. would of had so many innocents saved and many culprits stopped.