Quote:
Originally Posted by Y_Less
Name, e-mail, DOB, location, some servers want loads of info and its all covered by data protection.
|
That would be going back to my "people are stupid" theory. I don't think anyone playing an unofficial online modification, knowing that anyone can create a server, should be giving away personal information like this. I would also argue that that is on them! If you don't know how to protect yourself on the Internet you shouldn't be using it, just as you shouldn't be allowed to perform maintenance on a jet aircraft without proper qualifications and experience!
Quote:
Originally Posted by Y_Less
You were getting at that by saying users are stupid, so why should we be any better. There are no data protection laws for users - its their data and they can do what they want with it, only services have to be careful.
|
Ultimately it is their choice to input the information. It's very similar to someone signing up for an account on a website that asks for your phone number, then you skipping their license, and then wondering why you are getting 100 telemarketers calling your house everyday. That's on them.
I will admit, I don't know anything regarding "data protection laws", but if that does allow such ignorance on the end user, then the whole system is flawed (which seems to be a common theme as of late).
EDIT:
Quote:
Originally Posted by [HiC]TheKiller
I'd like to start off by saying that hash cracking isn't really as advanced as you would think it is. Most people just get others to crack for them in most cases. If you have a database with plain MD5 hashes like a lot of people do, then expect 80% of your database to be cracked in a few minutes. We are not talking days, weeks or months here, we are talking a couple of minutes.
|
Yes, that is why I said make the process more difficult.
Quote:
Originally Posted by [HiC]TheKiller
A lot of sa-mp members are quite young and generally will use the same password for a lot of things. Once a password cracker has cracked their ingame password, he/she could probably just log into the victims forum account (most regular players would have one) and grab their email.
|
That is on the member then. If you don't know how to protect yourself on the Internet, don't use it.
Quote:
Originally Posted by [HiC]TheKiller
It is the players responsibility, but you must know that not all players are responsible. I personally think that it's the server owners responsibility to make their users data as secure as possible.
|
I think server owners should make an effort. However, when joining a SA:MP server, you should assume that passwords are being stored in plain text anyway, as you don't know. There is no information (most probably) telling you otherwise, so why would you assume otherwise?
Quote:
Originally Posted by [HiC]TheKiller
I would like to bring up another point here, which is that passwords are not everything. All data whether it's an IP, email or personal information can be used against someone or to hack someone. In most cases servers will store this information in their server + forum databases. So you're saying that it's the users responsibility to keep this data secure?
|
No, it's not their responsibility, but it IS their responsibility to check if correct protocols are taken to secure that information.
Quote:
Originally Posted by [HiC]TheKiller
Should we just use proxies everywhere with disposable email addresses?
|
If that is what you believe you need to do, then sure.