Hi all, as title states, this thread is mainly about maybe getting the information required to be relaxed a tiny bit.
Before everyone goes on a witch hunt about "what about my security" or blabla, how many of you can honestly raise your hand and tell me you will change your password regularly (maybe once every 3 months?)
But whatever, on to my main point. Basically right now to change your email address, you require
Username, Password and your birthday (AKA the one you put when you registered your account)
yes i know, 90% of us probably or put a fake one.
Basically i'm here to ask if we can input
Username, Password, PIC, IGNs (4 layers) (& discord as well, i'll explain that later)
instead of
Username, Password and birthday. (cause a good 90% of us probably put a fake birthday)
what this SHOULD do is prove beyond a reasonable doubt it's US that's asking for email reset.
Cause let's be honest, if you give out your username, password and PIC to some rando, HOW ARE YOU NOT JIMPED YET??
As an additional layer, the admins could also ping you on Discord, asking you to confirm that you want to change it. (if they don't feel this is secure)
Then they could send an email to your current email asking for confirmation.
Just my 2c, feel free to weigh in constructively. Thanks everyone
Before everyone goes on a witch hunt about "what about my security" or blabla, how many of you can honestly raise your hand and tell me you will change your password regularly (maybe once every 3 months?)
But whatever, on to my main point. Basically right now to change your email address, you require
Username, Password and your birthday (AKA the one you put when you registered your account)
yes i know, 90% of us probably or put a fake one.
Basically i'm here to ask if we can input
Username, Password, PIC, IGNs (4 layers) (& discord as well, i'll explain that later)
instead of
Username, Password and birthday. (cause a good 90% of us probably put a fake birthday)
what this SHOULD do is prove beyond a reasonable doubt it's US that's asking for email reset.
Cause let's be honest, if you give out your username, password and PIC to some rando, HOW ARE YOU NOT JIMPED YET??
As an additional layer, the admins could also ping you on Discord, asking you to confirm that you want to change it. (if they don't feel this is secure)
Then they could send an email to your current email asking for confirmation.
Just my 2c, feel free to weigh in constructively. Thanks everyone