All Discussions > Steam Forums > Steam Discussions > Topic Details
van Grunz Oct 7, 2022 @ 10:44pm
Messy new Steam Login with Lack of Security
Aside from a very large login window that can suit a nearly blind person on FullHD, I will !always! have to enter a code that has been sent via eMail +additionally+.

What's the use for?

Normally, this has only to be done if someone forgets the password or a "new computer has been found". Obviously, the new Steam client isn't able to detect correctly that the computer hasn't changed, so this must be a bug.

Nevertheless:
Using -noreactlogin as a start parameter of what I've read here in this forum will start my Steam client INSTANTLY WITHOUT THE NECESSARITY OF ENTERING MY CREDENTIALS.

Seriously? Not even a password is required.

Do I have to decide between Pest or Cholera?

Either I have to enter EVERY TIME my username, password AND a Steam Code sent via eMail OR I do not need to enter ANYTHING and Steam just starts. I am confused and would like to talk to your "security" engineer. Please tell him that a suitable long password (16 characters or above) is sufficient to prevent effective password stealing. Once, a few years ago, my password was nearly stolen so I converted it to a much longer one -- since then, I no more suffered a steal attemption.

PLEASE !!! revert to the old logon system. Thank you.
< >
Showing 1-3 of 3 comments
cSg|mc-Hotsauce Oct 7, 2022 @ 10:49pm 
The regular -login was readded to the client in the beta 7 hours ago...

https://steamcommunity.com/groups/SteamClientBeta/announcements/detail/3317488613180874088

:qr:
#1
[N]ebsun Oct 7, 2022 @ 10:50pm 
Originally posted by van Grunz:
a suitable long password (16 characters or above) is sufficient to prevent effective password stealing. Once, a few years ago, my password was nearly stolen so I converted it to a much longer one -- since then, I no more suffered a steal attemption.
It doesn't really matter how long your password is - if it's going to get stolen via phishing, it wouldn't make a difference if it was 3 or 5000 characters.... the password length only helps prevent brute force attempts, and only works if you use different passwords for different logins.
No length of password is suitable protection against password stealing.
#2
van Grunz Oct 7, 2022 @ 10:55pm 
Originally posted by Nebsun:
It doesn't really matter how long your password is - if it's going to get stolen via phishing, it wouldn't make a difference if it was 3 or 5000 characters.... the password length only helps prevent brute force attempts, and only works if you use different passwords for different logins.
No length of password is suitable protection against password stealing.

Oh, sure it is, aside of Phishing. With every character diminishes the chance of success. Just make sure your eMail client doesn't show HTML code (just plain text) and the correct sender, then you're fine with a suitable long password. Phishing is a combination of naivety and lazy comfort.

Originally posted by cSg|mc-Hotsauce:
The regular -login was readded to the client in the beta 7 hours ago...

https://steamcommunity.com/groups/SteamClientBeta/announcements/detail/3317488613180874088

Thank you. This lets me hope that it will be soon back into one of the next updates. The current behaviour is academic.
#3
< >
Showing 1-3 of 3 comments
Per page: 1530 50

All Discussions > Steam Forums > Steam Discussions > Topic Details
Date Posted: Oct 7, 2022 @ 10:44pm
Posts: 3
Start a New Discussion

Discussions Rules and Guidelines