• All submissions to this site are governed by Second Life Project Contribution Agreement. By submitting patches and other information using this site, you acknowledge that you have read, understood, and agreed to those terms.
MAINTENANCE ANNOUNCEMENT - JIRA will undergo maintenance starting 1:00am PDT through 3:00am on Saturday 2010.03.20. Please do not enter issues during this time as the system maybe restarted.
Issue Details (XML | Word | Printable)

Key: SVC-1551
Type: New Feature New Feature
Status: Open Open
Priority: Critical Critical
Assignee: Unassigned
Reporter: Dedric Mauriac
Votes: 1
Watchers: 0
Operations

If you were logged in you would be able to see more operations.
2. Second Life Service - SVC

Require password confirmation for changes affecting account

Created: 15/Feb/08 09:53 AM   Updated: 07/Mar/08 10:34 AM
Component/s: None
Affects Version/s: None
Fix Version/s: None

Time Tracking:
Not Specified


 Description  « Hide
Many issues may affect the security of an end-users accounts. These range from security holes found in 3rd party programs (such as quicktime video), or simply walking away from the computer for a moment while someone else attempts to damage their account.

I would like a feature to confirm that the account holder is actually making the request wants to perform actions that could otherwise damage the account if they were unauthorized. This could simply be a dialog to enter a password to confirm. For power users and such, an optional checkbox could be provided to "Never ask me this again".

This should not depend on the client only. The service should require the client to provide this information. If the end-user chooses "Never ask me this again", then the information is provided to the client without the users need to provide it.

Account sensitive actions would be:

  • Transfer of L$
    • Gifting more than 50 US$ worth of L$ within the past 5 minute window (prevent mutliple tiny L$ transactions)
    • Purchasing lindens through the client
    • Purchasing parcels that require the purchase of additional lindens due to lack of funds
    • Purchasing land that is more than double the average rate per acre.
    • Gifting more than 50 US$ worth of L$ in a transation (including scripts in running objects)
  • Loss of L$
    • Uploading more than 50 items within the past 5 minute window (prevent someone from automating you to upload content)
    • Creating a classified that costs more than 50 US$ per week
  • Credability
    • Filing abuse reports
    • Receiving more than 50 US$ woth of L$ in a transaction
  • Land
    • Setting parcels for sale
    • Buying a land pass for more than 50 US$
    • Abandoning parcels
    • Deeding land to a group
    • Returning more than 500 items on a parcel

-Groups
– Paying more than 50 US$ to join a group
– Leaving a group (especially groups that are not public, or cost L$ to join)
– Adding permissions to a group role that are sensitive (such as marking parcels for sale)
– Inviting someone to a group with a role that has sensitive permissions (officer)
– Changing someones group role to a role that has sensitive permissions that the person did not previously have

 All   Comments   Work Log   Change History      Sort Order: Ascending order - Click to sort in descending order
[ Permlink | « Hide ]
Lex Neva added a comment - 16/Feb/08 10:13 AM
I'd support this, except that I think you've gone a little too far in your list of actions that require reauthentication. The general concept is good, though. It's like the various systems in Ubuntu Linux, other linux distributions, Mac OS X and Windows Vista (I believe) that require you to (re)enter an administrative password before performing administrative actions.

[ Permlink | « Hide ]
Lex Neva added a comment - 16/Feb/08 10:15 AM
Incidentally, this one's a showstopper for me:

"-- Receiving more than 50 US$ woth of L$ in a transaction"

I make an average of about 20 sales per day, each worth more than $50L. Do I need to log in and provide my password every time someone buys something? Is there some kind of timeout? Will I lose sales if I don't log in every hour or two to clear out the queue of pending transactions?


[ Permlink | « Hide ]
Dedric Mauriac added a comment - 16/Feb/08 12:08 PM
It's not 50 L$ - it's 50 US$ (about 13,250 L$ worth). These are mostly just ideas of things that I would not want someone other than myself to commit my account to doing. I believe that some actions (such as receiving large amounts of L$) can actually flag your account - especially if the person who sent the L$ to you obtained them by theft of another account. Example, someone steals 100,000 from an account and then donates it to a prize system that you own. The prize system doesn't require anyone to pay into it so it isn't considered as a wager against chance (gambling). Linden Lab employees find that this persons account obtained the L$ illegally and trace the money to your account. They can not recover the L$ from that person, so they confiscate your land and L$ to make up the difference and lock your account. It has happened before in this same exact scenario, so I would like the option to verify that I really want to receive large payments.

[ Permlink | « Hide ]
Lex Neva added a comment - 17/Feb/08 09:16 AM
I sure do feel silly now! That's what I get for skimming. I even pasted it right in front of my nose and didn't read it completely. That's a little different, although it still does raise the question fo what happens to a transaction that isn't approved, and how LL would handle this.

I do remember, back when the gambling ban went into effect, that two people who were my friends and coworkers got temporarily auto-banned from SL (over a weekend no less) because they gave out $1000L to several different people. Apparently the system flagged the transactions as suspicious and possibly indicative of gambling (it was compensation for beta-testing) and their accounts were banned pending further investigation. So yes, LL definitely does have a system in place to flag "suspicious" transactions.


[ Permlink | « Hide ]
Keisha Ninetails added a comment - 07/Mar/08 10:34 AM
This one;

"-- Receiving more than 50 US$ woth of L$ in a transaction"

Is a show stopper for me, and if I'm not around to enter my login info when someone shows up to pay their island tier it could cause someone to lose their island, all through a stupid misunderstanding. This would also wreak havok among those who rent out parcels of land, which commonly exceed your limit unless the account that owns the rental boxes is logged in and manned at all times, (potential SL T.O.S violation).

In the island buisiness, transactions of L$100,000 plus are common.

If this were changed to;
Paying more than 50 US$ woth of L$ in a transaction
you'd be better positioned to recieve my vote rather than my current strong desire to prevent this from being adopted.

Other proposed parts of this proposal I take issue with are;

– Gifting more than 50 US$ worth of L$ within the past 5 minute window (prevent mutliple tiny L$ transactions)

– Returning more than 500 items on a parcel *(repo an island sometime and you'll understand the headache this would cause)

Leaving a group (especially groups that are not public, or cost L$ to join) *(restrict this one to groups that aren't open join or pay to join and I'll back this point)

(And provided some sort of 'time-out' is pprovided I would back these, set up a group for a client some time and you'll see THAT headache)

– Adding permissions to a group role that are sensitive (such as marking parcels for sale)
– Inviting someone to a group with a role that has sensitive permissions (officer)
– Changing someones group role to a role that has sensitive permissions that the person did not previously have
Powered by Atlassian JIRA the Professional Issue Tracker. (Enterprise Edition, Version: 3.13.2-#335) - Bug/feature request - Atlassian news - Contact Administrators