I can't blame them for B, especially with how rude and mean this community can get sometimes. As for A, being an engineer its not always in our control and we may have the root cause but need to go to a vendor, like Cisco to find out how to fix it. Unfortunately I still can't give an ETA until we work out a fix. You can think me, or them incompetent for it, but no one knows everything and sometimes we have to rely on the vendor as the subject matter expert.

They can do better. It must be true, I read it on the internet.

Not that I want to point out the obvious to the OP, but you act like their service being down isn't already costing them. Any company that provides a service loses money when its offline. All those players not playing are also no spending money in the Cartel Market, not considering a sub, etc. Having a service down loses them money for every second its down. Which is more than enough incentive to get it up promptly. Its not like they are keeping it down just to screw with you. Also whoever mentioned that they aren't communicating with us. They are, just don't expect some technically detailed briefing about why its down. Its down, do the details really matter? They don't have an ETA yet. I do enough troubleshooting to know that when this stuff happens until you identify what the problem is you really can't give an ETA on when you'll have it back up. And if past actions of this forum community are any sign, if they missed the ETA, every self-entitled loon would be here screaming.

Steam does have two-factor. It emails you a code when you log in from a different computer. So does WoW if you want to go down that road too. Gmail, Yahoo, etc. They must have really crappy security too.

Im pretty sure its either a supply issue from the supplier (vasco) or an export issue with them. Because (that other game) uses the same supplier and their EU keyfobs have been "sold out" and unavailable for the same amount of time.

Average lifetime expectancy on keyfobs batteries are about 7 years. I usually replace them around the 5th or 6th year just to be safe.

The statement assumes a lot though. It assumes they are just reading a mean average and not looking at both the high and the lows and analyzing them. When you critically think something you need to remove all assumptions and focus on what you know to derive the correct answer. Truth is the OP statements assume much more than we know and therefore no reasonable conclusion can be drawn except they use statistics to analyze the data and make corrections. Having seen the presentation on spatial statistics that Georg gave at GDC in 2011. I can reasonable say they look at much more than the mean average

If you finished all the class quest on Nar Shadda, he won't show up until you go back to your ship. Theres a bug right after the class missions where the UI bugs sometimes and you can't see the crew skill list or your companion bar. Just follow the class mission back to your ship and it should fix it.

Really? This argument again? I mean don't get me wrong I love the classics, but can we stop using this obviously dumb retort. The Content Team, is a different team than the Security Team, is a different team than the Network Team, is a different team than the Database Team, is a different... see where this is going? Why would you put one teams work on hold while another does stuff. Thats just asinine.

Unless its changed since beta/ launch and Phillip is completely wrong, the only way to not get the SAQ's when your IP changed was to have an authenticator attached to the account. I remember going through the testing for this in Beta and it was the same at launch until I put the authenticator on.

Its amazing how many armchair security professionals there are playing swtor. You all should apply for high level security jobs for knowing so much. /end sarcasm Everyone screaming about knowing half of your login information know absolutely nothing about security. Heres how you would have to attack the site if you know the display name vs email. Scenario 1 Try to log in.. brute force the password. Internal systems pick up brute force attack and block the IP, flag it for review. Seriously Brute force attacks are very easy to detect. "But they could use a BotNet" True hackers using a BotNet are not interested in stealing your Swtor account. They want personal info like CC info to sell or the database of the user/passwords to sell to a 3rd party. They would be attacking Biowares internal network. Not brute forcing your account. "Gold Farmers......." Don't brute force, they either buy email/password lists from other hacked sites or hack vulnerable forum/game sites and use it to try and access accounts for other games. Majority of users don't practice good security and use email addresses on multiple sites. You yourself probably don't but for every 1 person that does, there is probably a couple hundred that don't Simple passwords... Again this is your own fault, not biowares, if your using a simple password like 'Password1' then you should seriously consider changing it to something much harder to guess like P2Ssw4Rd (replace each vowel with an even number and capitalize the next letter). And obviously don't use the word password. Scenario 2 Try to log in with someones display name, click forgot password, but I don't have your email address so now I am kinda stuck because I don't know where they are sending the password. I could try to social engineer the answer out of the person, or Bioware, lets say im successful, I still don't know the password to the email account, so were back to either trying scenario 1 on the email site, or back to trying to socially engineer the password out of the person. If you give up your password to someone its your own fault and you can't blame BW for that. Most email sites now have some sort of 2 factor or 2 step verification, you also shouldn't be using the same password for email and other sites. And if someone does ask you for your password, you should be asking yourself why, since no one ever would ask your for that info. Those claiming that they know "50% of the login" are missing SAQ's and IP verification, so really you only know 33%, 25% if they are using an authenticator If I had to guess the reason they are moving away from email is to seperate your email address from display name to be able to start using email verification steps for login, for users that either can't get an authenticator, don't want one, but want some sort of 2-factor login. Whats funny is this same fear mongering / argument went down before launch when they were using email addresses to login. Now that they are changing it, same fear mongering / argument. Damned if you do, damned if you don't TL;DR Usernames should not be a protection for authentication. Authentication is separate from identification. Identification is a piece of data that describes an individual or group. Most of the time a username is a sequence of characters that uniquely identifies an individual. Typically an individual is authenticated with a password. I may claim I am Margret Thatcher, but if I can not type in Margret Thatcher's password than I can not authenticate as Margret Thatcher.

No. That isn't even close to how authenticators work. In order for me to figure out the sequence I would need to obtain a master seed key from Biowares Authentication server. Then I would still need the 10 digit code on the back of your authenticator. The only way that authenticators have been hacked in the past is by using man in the middle attacks. This is no "easy feat" as you claim. And sorry but knowing my display name still doesn't make it possible to hack my account, you still need 2-3 other pieces of information for your normal Joe Common user (email, password, authenticator) if your smart and used a separate password and email then you need 4. For someone whos so up in arms about security, why would you have a character named the same as your Display name and then broadcast it to the world when arguing about security?

They copied his format in the main post thats stickied.

its not a leak, its not even true, its just to drive traffic to their website. They said a "reuters news feed" guess what, theres nothing in the reuters news feed even relating to F2P or Micro-Transactions. CONFIRMED: I have a bridge for sale in San Francisco if anyones interested. Serious offers only

For a multi-billion dollar company, their webpage looks like my 6 year old made it. They are also referencing a document from 2010 for their "article", you can get the source if you submit your email address to be used for marketing purposes by their affiliates (ya, multi-billion dollar company). I watched a LOT of the E3 coverage on EA and I didn't see one mention of anything regarding F2P or Microtransactions, Unless hes referring to the paid transfer service. An attention grabbing thread title like "CONFIRMED: Monkey's do fly out of my ***" has sent people into a discussion about something thats not even happening, with no solid source to even back it up except someone saying they saw it but you have to give me your email address to see my proof, which is 2 years old. Paranoid people will be paranoid. If someone wants to link me an EA press release or interview from someone from EA or Bioware saying this then ill come back on here and eat crow, but till then everyone getting worked up or threatening to quit over this are just a bunch of sheep that got trolled. Baaaah.

Is it just me or has this thread seriously gone 30 pages off an article from Yahoo.com, which had no credible source listed? You guys are seriously wasting time debating and getting upset over this?

Save my eyes. I would be upset to but can you please format that. It hurts.

7 years per the vendor's site http://www.vasco.com/products/client_products/single_button_digipass/digipass_go6.aspx We use the RSA tokens at my job and we replace them every 6 years, it takes a while, even with all the button pressing, your fine.

More likely the issues with his ISP routing, OP would have to call his ISP. Unfortunately sometimes getting them to act or trace the issue is impossible.

Wording for future transfers. Probably when its a paid service.

Cool Beans man. Thank you for this.

Specifics? Sources? Most of the interviews I have read the devs have stated the path but won't give specific details because its not set in stone. A lot of companies do this. Why? Because in the past companies that have outlined, given specifics, dates, promises, etc., have had it totally backfire and end up with a bigger PR mess than if they had just kept their mouth shut (AoC anyone?, WAR, another example) I think the problem is people read to much into what they say, its not just BW, the "game that shall not be named" has the same problem these days. People read to far into what is said and then get all nerd rage when their interpretation of what was said, turns out to be not true at all.

Sorry, This post does not have enough vitriol for the General Board. You need to add in some sentences about how fail it was and why BW sucks, before it will get any recoginition. Oh and threaten to unsub about six times. Good to hear, can't wait for my server to either open up for either moving or receiving

The Government wants my leet StarFox skills for Operation Moon Base Alpha. Please keep posting conspiracy theories people. Its fun to read. FYI STUN stands for Session Traversing Utilities for NAT