Character back ups

[Qezuzu]

Please implement some feature that would allow a player to back up their character.

What I'm thinking is-
generate hashes for a character, which would store information like their TR cache, bank, bag contents, ED experience, etc. Basically things that, on more than one occasion, have been wiped under certain circumstances.

The information would be stored on the player's own computer. If they think something is wrong, they can then contact support, give them the hashes which would prove that their character has experienced some bug, and restore whatever got messed up.

Because if your servers can't always keep things straight, let us have our own backup.

[Syllph]

I'm pretty sure if that info were stored on our end, we could hack it and abuse it.

Syllph has "Epic Ring of Spell Storing"_0011100 = 1

[Qezuzu]

I'm pretty sure if that info were stored on our end, we could hack it and abuse it.

Syllph has "Epic Ring of Spell Storing"_0011100 = 1

Not if Turbine had competent encryption.

The point of encryption is that only Turbine would be able to understand that data.

[aristarchus1000]

So many options... just incorporating one of them will end this LR drama...

[Syllph]

Not if Turbine had competent encryption.

The point of encryption is that only Turbine would be able to understand that data.

While this may be very true, I cannot think of a single game that has proven uncrackable.

[Darkrok]

I'd be open to having this stored on Turbine's end. If there were a separate database that could be updated on a certain date and could be recovered this would certainly help with some of those situations that have come up. Telling a customer, "sorry but we have no way to validate your claim so you're out of luck" isn't good customer service and a secondary backup of data stored separate from their actual game data could alleviate those situations.

[Qezuzu]

While this may be very true, I cannot think of a single game that has proven uncrackable.

Well then they can store it on their own servers. Just have some way to store a character. Hell, just do it automatically before a reincarnation.

It's ridiculous that they can simply lose parts of a character, as rare as it is.

[Syllph]

Well then they can store it on their own servers. Just have some way to store a character. Hell, just do it automatically before a reincarnation.

It's ridiculous that they can simply lose parts of a character, as rare as it is.

Yeah agreed. The mmo i played before ddo lost items from time to time in their crafting system. It took five minutes from asking for help to having a new item given to you. It was effortless. (Some players even tried to lie about "losing" items and were promptly banned. The devs had a list of what you owned and where it went)

[Mastikator]

Even with competent encryption it's still a high risk that someone will decrypt it and hack his own character, we are talking about tens of thousands of people, some of which will be hackers with lots of free time on their hand and a lot of desire to hack the game.
GMs should fix problems with losing parts of your character, allowing for backups would open a huge security hole and probably take more manpower to make possible than the GMs use anyway.
Sorry, not signed

[eachna_gislin]

Agreed if an encrypted version is stored on Turbines servers.

I'd also like a text version I could pull down for my own records, to satisfy the inner corner of my brain with OCD tendencies.

You can do a little of this with myddo but it's a half @ss-ed product that doesn't work properly. I'd like a basic text file with some sort of standardized output that could then be massaged into 3rd party programs.

[Memnir]

It would be cracked, hacked, exploited, and abused within 24 to 48 hours.

[Gkar]

Not if Turbine had competent encryption.

The point of encryption is that only Turbine would be able to understand that data.

GPU technology unintentionally was designed to be the best hacking tool around. It can break any encryption is a very short time.

http://hackaday.com/2012/12/06/25-gp...our-passwords/

348 BILLION hashes a second. That's insane. (God, what I could have done with that tech in my hacker days...)

If you have the hash file, as suggested in the OP, its hackable.

[stoerm]

GPU technology unintentionally was designed to be the best hacking tool around. It can break any encryption is a very short time.

Your "any encryption" assertion is kobold droppings. If it were true all online commercial activity would be at risk. People have also rented cloud servers to do the same. Note however that your linked five server 25 GPU setup took 5.5 hours to crack a single 8 character NTLM password. Hardly the most difficult task considering:

"Implementers should be aware that NTLM does not support any recent cryptographic methods, such as AES or SHA-256. It uses cyclic redundancy check (CRC) or message digest algorithms (RFC1321) for integrity, and it uses RC4 for encryption. Deriving a key from a password is as specified in RFC1320 and FIPS46-2. Therefore, applications are generally advised not to use NTLM."

http://en.wikipedia.org/wiki/NTLM

Just GPG signing a text character sheet would work.

[Syllph]

"Implementers should be aware that NTLM does not support any recent cryptographic methods, such as AES or SHA-256. It uses cyclic redundancy check (CRC) or message digest algorithms (RFC1321) for integrity, and it uses RC4 for encryption. Deriving a key from a password is as specified in RFC1320 and FIPS46-2. Therefore, applications are generally advised not to use NTLM."

I'll be honest I have no clue what any of that means. I do know "they" managed to install pong onto a government website, effectively shutting it down. Somehow I imagine the expression "Where there's a will, there's a way" is appropriate here.