Skip to content
View in the app

A better way to browse. Learn more.

Tip.It Forum

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

Added security

Featured Replies

I've been thinking about ways of adding more security to our valubles, and one idea that was particularly useful was, WHAT if our bank vaults have a password to enable|disable item withdrawals, with a 20gp tax to charity? :D

 

 

 

 

 

 

 

Of course the password would be different from our acc passwords, and only available when we log out (i'm not saying there should be an annoying window popping up asking "would you like to lock your bank vault before you log off?" because i know some people log off and on every day several times.

 

 

 

 

 

 

 

I will send this idea to JageX but I would like some more suggestions, because I feel that its a good idea, but not enough weight behind it.

 

 

 

 

 

 

 

\\Suggestions anyone?//

What's stopping a keylogger getting that password too? Keyloggers are one of the main ways people get "hacked".

  • Author

Thats true, but you'd be talking and stuff and you don't need a username for the vault to lock, so it'd be a bit difficult for the keylogger to pick up the password.

 

 

 

 

 

 

 

Like I said, my concept isn't completely perfect, its got flaws...and thats the reason why I submitted it to this forum, so i could tweak it and improve it before sending it off.

It's not a terrible idea, but how many people would be willing to use this system? Imagine a fairly new player who manages to lock his/her bank, and leaves the game for a month or so. Then they come back, and has to remember two passwords to utilise the game properly... I think it'd be more of a hinderence to some people, so perhaps a way to totally disable it? It is a good idea, though probably one I wouldn't use...

 

 

 

 

 

 

 

Another way around keyloggers is to use a system similar to my online bank account; have a passnumber, such as a DOB, but it only asks for 3 or 4 numbers out of the number... Such as 1st 3rd 4th and 6th numbers (random which ones it chooses)? Then a keylogger only gets part of the number... Just a thought!

Its a smashing idea. But it should be slightly more complicated because how often are you gonna use the vault. Stick a lot of good stuff in there then leave it there.

 

 

 

 

 

 

 

Make it so there is

 

 

 

5 charcters(letters) password- openy

 

 

 

a puzzle-just a simple put these events in order(first day of school, first freind, first kiss, first gf/bf) (mouse, no key board)

 

 

 

a set of questions-same as your recovery questsions (mums name, dogs name, town you live in.) (not your actualy recovery questions)

Well I knew you wouldn't agree. I know how you hate facing facts.

Thats true, but you'd be talking and stuff and you don't need a username for the vault to lock, so it'd be a bit difficult for the keylogger to pick up the password.

 

 

 

 

 

 

 

Well..that makes no technical sense. You're saying a keylogger wouldn't pick up the vault password because no username was entered? Lol?

i like what gunbound has. it tracks your ip that you create the account on, and lists it with your email address. it won't let you sign in on a different ip address unless you do a verification email. of course, this option CAN be turned off

  • Author

 

Thats true, but you'd be talking and stuff and you don't need a username for the vault to lock, so it'd be a bit difficult for the keylogger to pick up the password.

 

 

 

 

 

 

 

Well..that makes no technical sense. You're saying a keylogger wouldn't pick up the vault password because no username was entered? Lol?

 

 

 

 

 

 

 

It's confusing to explain, but if you somehow put a keylogger on someone's computer, you'd know their account name so, all you'd need to search for is acc name, finding the pw somewhere around it, but with no username, you wouldn't know what to search for. Hope this clarifies it a little bit.

It's confusing to explain, but if you somehow put a keylogger on someone's computer, you'd know their account name so, all you'd need to search for is acc name, finding the pw somewhere around it, but with no username, you wouldn't know what to search for. Hope this clarifies it a little bit.

 

 

 

 

 

 

 

A dilligent logger would still be able to find most peoples', since the majority of people probably don't do much typing other than in Runescape or the occasional IM message while playing. All you'd have to do, once you found the point in the log where they start playing RS, is sift through the log to find it and you'd be golden. It wouldn't be that hard because it would look pretty out of place among the chat messages.

 

 

 

 

 

 

 

Anyway, it's a moot point because this is completely unnecessary and unless it was completely voluntary it would just be an annoyance to the players with brains. If you excercise even a modicum of computer caution you won't get a keylogger. Okay? End of story.

Click on numbers to type the code...

''There should also be a thing were you can trade items through the bank if you have two accounts and you want them on your other account''

  • Author
Anyway, it's a moot point because this is completely unnecessary and unless it was completely voluntary it would just be an annoyance to the players with brains. If you excercise even a modicum of computer caution you won't get a keylogger. Okay? End of story.

 

 

 

 

 

 

 

Yeah...well, i was thinking of having an option if you want the vault password on or off. It's just to make people feel more secure, thats all :)

I've seen this idea before, but instead they suggest having a number combination which you use your mouse to enter. I like that idea because even if keyloggers could record mouse click coordinates, they would have to know the exact position of the RS window making it more or less untraceable.

  • Author
I've seen this idea before, but instead they suggest having a number combination which you use your mouse to enter. I like that idea because even if keyloggers could record mouse click coordinates, they would have to know the exact position of the RS window making it more or less untraceable.

 

 

 

 

 

 

 

Yeah, and on the screen, the numbers are never in the same order... like they're randomly generated. For example your code is "10010101" (EXAMPLE....:P) and you have to click the buttons to enter your code...i like that :P

Hey, there is already things to stop keyloggers, use on-screen keyboard to log in, there you click the buttons with your mouse. That way the keylogger doesn't get into your account so no need for vault. The keylogger doesn't get anything, except the stuff you chat. (Unless you want to use on-screen keyboard to chat...)

  • Author
Hey, there is already things to stop keyloggers, use on-screen keyboard to log in, there you click the buttons with your mouse. That way the keylogger doesn't get into your account so no need for vault. The keylogger doesn't get anything, except the stuff you chat. (Unless you want to use on-screen keyboard to chat...)

 

 

 

 

 

 

 

there's a flaw with that. I think the onscreen keyboard copies the codes, that are exactly the same codes as the keyboard, and the keylogger basically copies the codes that are transmitted....am i right? I'm not sure anyway.. :S

I like the idea of the clicking numerical codes in the chatbox that swap positons each time so that the keylogger can't trace the precise co-ordinates of each number.

"Da mihi castitatem et continentam, sed noli modo"

Its a smashing idea. But it should be slightly more complicated because how often are you gonna use the vault. Stick a lot of good stuff in there then leave it there.

 

 

 

 

 

 

 

Make it so there is

 

 

 

5 charcters(letters) password- openy

 

 

 

a puzzle-just a simple put these events in order(first day of school, first freind, first kiss, first gf/bf) (mouse, no key board)

 

 

 

a set of questions-same as your recovery questsions (mums name, dogs name, town you live in.) (not your actualy recovery questions)

 

 

 

 

 

 

 

Yes, an on screen keyboard (in game) would make your bank very safe, with an added security code, would it not?

^^ response^^

 

 

 

well, yes but only if the online keyboard will be RANDOM

 

 

 

because otherwise there are coordinates.. but if the keys will be random

 

 

 

(for instance, x will be on the upper right part of the keyboard)

 

 

 

then that'll be much safer

First off the majority of people who get 'hacked' have a keylogger so an extra password isnt much good.

 

 

 

 

 

 

 

Secondly the OSK still sends the same key-press event message to the OS as the keyboard does, a keylogger will still get whatever you type with the OSK.

 

 

 

 

 

 

 

For the click randomly located numbers idea, a lot of modern keloggers have screenscrapers, that is to say when you click they take a screen shot, so there still going to be able to get your 'vault'.

 

 

 

 

 

 

 

Rather than adding ineffective security measures to RS, look after your own systems and keep them secure.

there are no stupid questions

just way too many inquisitive idiots

balance is scary to people who like things easy for them

Utopianflame.png

  • Author

:shock:

 

 

 

 

 

 

 

...they took my idea...

 

 

 

 

 

 

 

They better give me some credit for it..oh well :(

:shock:

 

 

 

 

 

 

 

...they took my idea...

 

 

 

 

 

 

 

They better give me some credit for it..oh well :(

 

 

 

 

 

 

 

Uh...hate to break it to you but it has been suggested for years.

 

 

 

It also doesn't mean it's without fault, it could still get keylogged, which are what 99% of "hackings" come from.

Create an account or sign in to comment

Important Information

By using this site, you agree to our Terms of Use.

Account

Navigation

Search

Search

Configure browser push notifications

Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.