Install Steam
login
|
language
简体中文 (Simplified Chinese)
繁體中文 (Traditional Chinese)
日本語 (Japanese)
한국어 (Korean)
ไทย (Thai)
Български (Bulgarian)
Čeština (Czech)
Dansk (Danish)
Deutsch (German)
Español - España (Spanish - Spain)
Español - Latinoamérica (Spanish - Latin America)
Ελληνικά (Greek)
Français (French)
Italiano (Italian)
Bahasa Indonesia (Indonesian)
Magyar (Hungarian)
Nederlands (Dutch)
Norsk (Norwegian)
Polski (Polish)
Português (Portuguese - Portugal)
Português - Brasil (Portuguese - Brazil)
Română (Romanian)
Русский (Russian)
Suomi (Finnish)
Svenska (Swedish)
Türkçe (Turkish)
Tiếng Việt (Vietnamese)
Українська (Ukrainian)
Report a translation problem
resetting password is 7 days or 5 , brain freeze.
it is not for account security it is for the security of the rest of us these restrictions are in place.
My issue is not with the lockout. I agree that it is a useful security feature to help protect people from having their account accessed, and their inventory dumped/sold off.
However; Steam took an overly simplistic approach to its protection scheme, which hurts legitimate users.
There are multiple ways that Steam could have implemented another layer of Identity confirmation which would allow people to finish an account lockout. Examples...
1. Making a $1 charge/refund on an already authorized saved payment method, with the user being REQUIRED to provide the payment details again.
2. Verifying that the Steam application is running on a machine that is already authorized using their already stored hashes.
3. Sending a text message with a PIN to an associated phone number.
Instead, the lockout is mandatory. 30 days. No questions asked or answered.
you still do not understand the restrictions you complain about have noting to do with your account security.
so I do not need to read the rest of your post yet.
it is like going to a club and not being allowed acces because you have sneakers.
it is a dress code to trade and do the market.
follow the dress code.
Incorrect.
Those restrictions exist for the SOLE purpose of protecting account holders Inventory/Wallet funds. The 30 day period allows a person with a compromised account to regain control over it before their inventory or wallet gets raided.
Also. Your example is flawed. Pointing out an arbitrary rule created for social reasons does not prove your point.
An example with meaningful similarities would be:
Going to a secure office building that does not allow any outside electronics.
Not being allowed inside because you have an insulin pump.
Not having any way to get an exemption.
Not being able to do business with said office building.
The 30 day lockout is NOT the problem. It is totally fine.
The issue is that there is no process to remove it.
I've spent more than a decade writing, adjusting, and implementing security policies for the corporate and military world. You are not going to convince me that Steam is in the right, because this is literally the type of example I use to show clients why 'no exception" policies do not work in the real world.
Agree.
i have heaps of my passwords written down in RL in a little journal thing. i live alone, so short of someone robbing me and stealing my diary on some psychic knowing that my computer passwords are siting in there...i feel they are fairly safe.
If you and your wife trust each other there's no harm in her writing her Steam password on a sticky note and then sticking it to the underside of her desk or something.. Or in your nightstand or something.
Yep...this...and if I remember correctly, all with only about 500 employees.
Your 'wifes' account was inactive for over 2 months that's why
Root cause, you forgot your password. Not steam's problem. Yours.
If you haven't been payed for your opinion as a security professional in the last 18 months, then it really does not matter if you think I'm wrong.
Bad policy is bad policy. End of story.
Though, none of this matters, since Steam only has like, one customer service person. The rest of their employes are all busy shoveling up all the cash that dump trucks keep dumping into their parking lot.
Why not make her password yours... then if she can't keep it memorised, you can type it in for her since it'll be the same.
Or, they are human beings also and allowed to spend time with family and others during major holidays too....imagine that.
EDIT...This user was not paid for his or her opinion.
EDIT 2...I love how he seems to be dodging around the "forgotten password" issue....hmmmm...