Quote:
|
Quote:
Blizzard will probably improve upon it as they do most of their systems - especially considering this affects all of their games that support it. |
Quote:
Honestly people don't really need a good reason to cancel their account. A GM sneezes in their vicinity , a rogue looks at them the wrong way or Blizzard comes out with some new fangled thing that people object to and they vote with their wallets. I would just raising the possibility that given how the Terms of Use are currently worded they may see some cancelled accounts over how the terms of use are currently worded regarding this feature. |
It will stay the email / battle.net account because of the planed facebook integration...
in starcraft beta you can already enter your facebook credentials into starcraft and it will get all email of your friends and tries to add them as real id. btw.. if you try to add a real id friend you don't get an message of the email you tried is really a battlenet account unless the other allows to add. |
The biggest problem I've with RealID at the moment is that in WoW you are your own friend and addons can get RL information about you (at least that is what I've read, don't know if still is still true) and can save and/or send them, even if you don't use RealID.
RealID itself with the facebook connection (so that you can't be sure that nothing is send to them even if you don't like it), the missing privacy settings (characters, friends-of-friends, ...), login-email and the possibility for addons to get the information has too much conceptional flaws for me, so I won't use it. I hope it's possible to hook into the API functions so that you can modify them to return fake strings. Does anybody knows if that's possible (don't have active account)? |
Quote:
|
According to http://www.wowwiki.com/Patch_3.3.5/API_changes it seems that addons can use the new API functions of 3.3.5 to get that information (including surname for example) and so could send them through hidden channels or something like that.
And it seems that you are your own RealID-friend so addons could let WoW send a message to yourself and then get the information. And I haven't read so far that these functions are callable by Blizzard code only. |
So far as I understand it, since RealID is opt in the information shouldn't be there to return anything meaningful unless you choose to use the service. Admittedly my understanding of Lua and the API is fairly basic but those calls seem to indicate that you are in fact using the service to being with.
The information in the FAQ for RealID appears to support this. Of course I could be totally wrong but I certainly hope not. |
I also hope that's not correct. But as I've read so far you can't opt-out being your own RealID-friend which means your addons can get your RL information.
I hope someone here who has access to PTR (I won't reactivate just to check that) can clarify that and can check if an addon could hook the functions and return fake strings. |
Quote:
All it appears to be is a list of function calls ,their parameters and list of a variables new in the 3.3.5 patch. We have no idea what each function does , how they work , what variables we need to use , what format those variables need to be in , which ones are protected etc etc. Those functions may not do what you think they will do just from reading the name. And there isn't any indication that all of those function calls will actually be able to used in the 3.3.5 patch - Blizzard have in the past included stuff in their patches that aren't activated until a later patch. Some of it is never used. I haven't seen anything yet on testing being done by addon authors on the current 3.3.5 API. Neither do I know how to. |
Quote:
All i can find about this is that the service is not required. You can choose to use it or not. If not life goes on as normal. My thoughts being that if I'm not using the service than im not my own friend because i dont use the system. It would be like saying I'm a member of a club i never go to or signed up for but im part of it wether i like it or not. What I'm getting from your statement is you are part of the service and involved even on a rudimentary level regardless. The you are your own friend bit. If thats the case i forsee TONS of issues for blizzard. Im not doubting you have read this though personally i would like to see a reference. After which i may need to send a few cranky emails to blizzard. |
You cannot add yourself to RealID, as far as I can see it's impossible for addons to get your own information. If you add other people to RealID, they can get theirs and maybe through the Friend of a Friend get your name. Regardless, that still requires you to be using RealID. If you decide to opt-out of it, an addon can't do anything and won't have any personal info to get.
As far as I can see, if you decide not to use RealID, nobody knows anything about you. The extent they can find out is "Somebody on battle.net has the email X," but nothing else. |
It seems that "you always are your own friend" was a bug which is fixed in newer PTR versions. You can find at least two big threads on EU forums about that (in addition to those threads where many people complain about the way RealID is implemented especially according to privacy).
@Bluspacecow: The page list return values also which includes "givenname" and "surname". However, I still hope these functions will be limited to call by Blizzard code only on live, even if I won't use RealID. I think there still is a risk that there could be a bug or something which could be used to get (own) RealID information by addons if these calls stay available to addons. |
Quote:
|
Quote:
This would mean the hacker would need to have a toon logged in 24 hours a day on every single realm out there both Horde and Alliance . Maybe with an auto message taker or something. With the 50 toon limit per account that's a fair amount of accounts. Not really worth it when there is other hacking attack vectors with a much greater payload and are easier. I admit though the other possibility would be a master addon and a slave type addon that gets installed via social engineering. The slave type addon would have to be disguised as something else like a build of a populour addon except with this listening code embeded in it. But the thing is. The addon community has so far been excellent at self-policing itself. There isn't any way that this sort of scam would be put up with in the community and if it was found out then there's no way the community will be quiet about it. There will be guides to telling you how to remove including addons written to block it. As long as you are getting addons from Curse and Wowinterface both of whom have teams that verify every upload there shouldn't be a problem with this. The other thing is *despite* knowing the function names and what they return we have very little information about how they work and if what they return is in a form that we can use. For all we know they could all be Protected and what's returned is only for Blizzard addon and code to read and is encrypted. I've not seen anything about anyone playing around with those functions ... Shadow you up for it ? Wanna mail me an addon to play around with this on the PTR ? |
Quote:
|
Quote:
:( |
Like many probably did, I received an email today from Blizz about the upcoming ReadID feature. I noticed this paragraph:
Quote:
It means that your real life friend will be able to see all of your characters on their friends list, and you will be able to see all of their characters on your friends list. /edit: ah, wait... Now I see the section on the FAQ about friends of friends... Disregard the above. (That should have been listed in the email :p) |
I finally got around to buying an authenticator.
I have no problem with my emails being known / name. I'm a bit of a public book. xD. I am an administrator with AboutUs so there is no use trying to hide my ID. However, in game, only a select few well add me anyway. So, what's the risk? |
Quote:
Real-world example: Kid plays WoW. After a lot of discussion, his mom lets him use Real ID. He friends his sister, one of his close RL friends, and his guild leader. The next day, trade chat is full of his sister's name, cell number, workplace... Turns out the guild leader was a bit of a jerk. The thing is, his sister never friended anyone she wasn't directly related to. The FoF feature means you should not only never add people you don't trust, you should never add people who trust anyone you don't trust. |
All times are GMT -6. The time now is 09:01 PM. |
vBulletin © 2024, Jelsoft Enterprises Ltd
© 2004 - 2022 MMOUI