Forums

Stay Logged In

Quick find code: 278-279-458-65970390

of 2
Twinnrova

Twinnrova

Posts: 448Silver Posts by user Forum Profile RuneMetrics Profile
I would really appreciate an option to stay logged in to the forums on my home computer. Other forums and social networks give their members this option. You could keep the necessary login step before accessing account messages and settings, but to simply browse and interact with the forum and RuneMetrics I don't believe it is necessary for me to log in several times in one sitting, or even every single day.
Pandoras Box86 - Overseer - Founded 2010 - Disbanded 2013

Malicious Intent - Sergeant - Enlisted March 9th, 2016 -

03-Dec-2017 09:19:25

Twinnrova

Twinnrova

Posts: 448Silver Posts by user Forum Profile RuneMetrics Profile
I understand your position completely. It is definitely a benefit that the RuneScape website will automatically log you out after some inactivity.

However, a fairly standard feature available on forum sites is the ability to stay logged in at certain computer stations. For example, I hardly need to worry about security from my home computer. It would be convenient to give the users this option, and it wouldn't detract from the security of anyone who doesn't intend to use the feature.
Pandoras Box86 - Overseer - Founded 2010 - Disbanded 2013

Malicious Intent - Sergeant - Enlisted March 9th, 2016 -

04-Dec-2017 05:25:33

Chiburu
Jan Member 2019

Chiburu

Posts: 259Silver Posts by user Forum Profile RuneMetrics Profile
Judging by the consistent occurrences of hijacking help threads in the Community Led Account Help forum, I'd say it's best there isn't an option to stay logged in. There's a backend timer in place that lets you return to the site logged in after not being on the site. Knowing the high demand for account thievery, I'd say Jagex are doing their players a favour. Artist
|
Animator
|
Programmer
|
Writer
...and most importantly...
|
Gamer
|

04-Dec-2017 19:16:24

djh101

djh101

Posts: 2,172Mithril Posts by user Forum Profile RuneMetrics Profile
Support. At least they don't block password managers anymore (they used to do that, didn't they?). Old School Update Priority: Fix Broken Skills > Revitalize Dead Minigames > Everything Else

04-Dec-2017 23:05:15

Twinnrova

Twinnrova

Posts: 448Silver Posts by user Forum Profile RuneMetrics Profile
I could stay logged into the RuneScape website on my home computer indefinitely and never face a security threat unless someone physically breaks into my home and decides they want to head over to the RuneScape forums.

And, on top of that, even if we were able to remain logged in for forum access, a username and password will always be required to access account information. Again, I'm not suggesting something that's forced upon anyone. I'm suggesting a simple option to stay logged in for a longer period of time.
Pandoras Box86 - Overseer - Founded 2010 - Disbanded 2013

Malicious Intent - Sergeant - Enlisted March 9th, 2016 -

05-Dec-2017 00:09:42

Chiburu
Jan Member 2019

Chiburu

Posts: 259Silver Posts by user Forum Profile RuneMetrics Profile
Twinnrova said:
I could stay logged into the RuneScape website on my home computer indefinitely and never face a security threat unless someone physically breaks into my home and decides they want to head over to the RuneScape forums.

And, on top of that, even if we were able to remain logged in for forum access, a username and password will always be required to access account information. Again, I'm not suggesting something that's forced upon anyone. I'm suggesting a simple option to stay logged in for a longer period of time.

We've gotta think of the others, too. You may have a keen sense of netiquette, but it's not so apparent with others, and far too many hijacking threads get made daily—very sad. And although you may need to login again to access account details, accounts are still open to the Forums and other information that could potentially harm the owner's account and interaction with others.
Artist
|
Animator
|
Programmer
|
Writer
...and most importantly...
|
Gamer
|

05-Dec-2017 03:17:59

Twinnrova

Twinnrova

Posts: 448Silver Posts by user Forum Profile RuneMetrics Profile
The site could use the current settings as default and give the players the option to leave themselves logged in if they choose, and then any negative consequence that happens to them would be their own liability for choosing to stay logged in to a computer that other people have access to.

Can you explain to me what information an attacker would have access to? I know that if someone gained access to your account being logged in on the forum that they could post anything they want in any forum, but what else could they accomplish, and how?

Also, as far as being able to post in the forums, if a thread or post breaches the code of conduct of the forums the thread or post is locked or hidden. Other than flaming the forums, what can someone do with your hijacked account on this site?

I'm asking because I'm honestly curious as to what these repercussions would be.
Pandoras Box86 - Overseer - Founded 2010 - Disbanded 2013

Malicious Intent - Sergeant - Enlisted March 9th, 2016 -

05-Dec-2017 06:00:44

Chiburu
Jan Member 2019

Chiburu

Posts: 259Silver Posts by user Forum Profile RuneMetrics Profile
Twinnrova said:
Can you explain to me what information an attacker would have access to? I know that if someone gained access to your account being logged in on the forum that they could post anything they want in any forum, but what else could they accomplish, and how?

Also, as far as being able to post in the forums, if a thread or post breaches the code of conduct of the forums the thread or post is locked or hidden. Other than flaming the forums, what can someone do with your hijacked account on this site?

I'm asking because I'm honestly curious as to what these repercussions would be.

If they have malicious intent, they have the power to post inflammatory and offensive content on the Forums and potentially get the account muted and/or banned, either temporarily or permanently, from either the Forums, the game or both.

Surely, Jagex can look into where those posts were coming from and the consistency of the hijacker and the owner's behaviour, but the damage would have already been done, and the hijacker would have evidently affected other users along with the status of the owner's account.
Artist
|
Animator
|
Programmer
|
Writer
...and most importantly...
|
Gamer
|

05-Dec-2017 07:51:12 - Last edited on 05-Dec-2017 07:54:53 by Chiburu

Twinnrova

Twinnrova

Posts: 448Silver Posts by user Forum Profile RuneMetrics Profile
So, if given the option to remain logged into the forums, if you leave your account open for someone to hijack and make flaming posts, you are responsible because you made the mistake of leaving your account logged in on a computer that other users have access to.

Like I said, the intention of the feature would be for use on private computers. You could even have a warning message reminding the user that it's not a good idea to stay logged in on a public computer. Many modern sites make use of this feature and maintain control of their online communities.
Pandoras Box86 - Overseer - Founded 2010 - Disbanded 2013

Malicious Intent - Sergeant - Enlisted March 9th, 2016 -

05-Dec-2017 12:56:42

Quick find code: 278-279-458-65970390Back to Top