secret q and a required to delete projects?

doqq

so…lets say I got hacked and the mEAN hacker deleted all my projects!! the mEAN hacker found it v easy to delete my projects. because to do so, all the hacker had to do was put in my password, which is weak protection, since if the hacker where able to guess my password, (s)he would easily be able to delete my projects.
so that's where my suggestion comes in!
what if there where a secret question and answer that you had to type in when you joined Scratch? you could write the question and answer yourself (example: question - What is my guinea pig's name? answer - William Afton (yes that's his name hehe) and you would have to type the question and answer to delete your projects! so even if a hacker guessed your password, (s)he would not be able to delete your projects unless they also knew your secret question and answer. :')

I'm no longer active on this account
@Nero-Guineadoq is where you can find me and my recent projects

powercon5

Why not just you an answer to those types of questions as your password? They only use the question if you forget yours as they are not as secure as a password. Make sure to pick a good password.

Last edited by powercon5 (Aug. 2, 2017 23:51:17)

Witty signature.

doqq

powercon5 wrote:
Why not just you an answer to those types of questions as your password? They only use the question if you forget yours as they are not as secure as a password. Make sure to pick a good password.

Because even if I do have a good password (which I do btw) someone might still b able to guess it

I'm no longer active on this account
@Nero-Guineadoq is where you can find me and my recent projects

powercon5

doqq wrote:
powercon5 wrote:
Why not just you an answer to those types of questions as your password? They only use the question if you forget yours as they are not as secure as a password. Make sure to pick a good password.

Because even if I do have a good password (which I do btw) someone might still b able to guess it

How are they going to guess it? if it's a good password that's long enough it would be almost impossible. It's much much much easier to guess the answer to a question.

Witty signature.

doqq

powercon5 wrote:
doqq wrote:
powercon5 wrote:
Why not just you an answer to those types of questions as your password? They only use the question if you forget yours as they are not as secure as a password. Make sure to pick a good password.

Because even if I do have a good password (which I do btw) someone might still b able to guess it
How are they going to guess it? if it's a good password that's long enough it would be almost impossible. It's much much much easier to guess the answer to a question.

Most people do not have v. good passwords. I know a friend whose password is her irl name! The q and a would be an extra level of security for those peeps who don't have good passwords

I'm no longer active on this account
@Nero-Guineadoq is where you can find me and my recent projects

LionHeart70

Neutral support, but..
It's not that easy for someone to hack you. You should choose a secure password.

lh70 / nora/tobi / she-they pronouns / pansexual-demisexual / 14 / sagittarius / furry / artist / intp / stop-motion films / lbp / fall out boy / panic! at the disco / twenty one pilots / stranger things / a series of unfortunate events
“When you have a bad day, a really bad day, try and treat the world better than it treated you.” -Patrick Stump
“Music seems to hold everything together. It seems to make things not so chaotic sometimes. It seems to make things make more sense sometimes.” -Tyler Joseph
“You'll fear your fears forever if you never do things you're afraid of.” -Josh Dun
“I'm still figuring out who I am, but I know I'm not who I was.” -Brendon Urie

powercon5

doqq wrote:
powercon5 wrote:
doqq wrote:
powercon5 wrote:
Why not just you an answer to those types of questions as your password? They only use the question if you forget yours as they are not as secure as a password. Make sure to pick a good password.

Because even if I do have a good password (which I do btw) someone might still b able to guess it
How are they going to guess it? if it's a good password that's long enough it would be almost impossible. It's much much much easier to guess the answer to a question.

Most people do not have v. good passwords. I know a friend whose password is her irl name! The q and a would be an extra level of security for those peeps who don't have good passwords

Surely that's the users fault? Instead Scratch should encourage users to have better passwords? Still, if you can guess a password you can guess the answer. A password is better than a question.

Witty signature.

doqq

powercon5 wrote:
doqq wrote:
powercon5 wrote:
doqq wrote:
powercon5 wrote:
Why not just you an answer to those types of questions as your password? They only use the question if you forget yours as they are not as secure as a password. Make sure to pick a good password.

Because even if I do have a good password (which I do btw) someone might still b able to guess it
How are they going to guess it? if it's a good password that's long enough it would be almost impossible. It's much much much easier to guess the answer to a question.

Most people do not have v. good passwords. I know a friend whose password is her irl name! The q and a would be an extra level of security for those peeps who don't have good passwords
Surely that's the users fault? Instead Scratch should encourage users to have better passwords? Still, if you can guess a password you can guess the answer. A password is better than a question.

I guess you're right

I didn't think of that.

I'm no longer active on this account
@Nero-Guineadoq is where you can find me and my recent projects

-raspberry_

I support. It is not impossible to guess someones password.

VideoGamerCanInvent

Semi-Support. If you wanna delete all of your projects that's a lot of work, unless after you answer it you don't have to again for a half hour. Anyways though, it should be a security option in Account Settings.

woah, haven't been on here in a while

Thelnvoker

LionHeart70 wrote:
Neutral support, but..
It's not that easy for someone to hack you. You should choose a secure password.

I'm a basically a potato or cat or something with a very dark sense of humor who likes steampunk, traditional art, Skyrim, etc.

Anyone wanna RP with me?

cul8er

No support. You should be using a password that can't be guessed (no words or number patterns) and is preferably not susceptible to brute force attacks (long with letters in different cases, numbers and symbols such as @$%&).

Gone.

FancyFoxy

No support. If a hacker's gone far enough to be able to see the Delete button, something's wrong.

THIS IS MY SIGNATURE. THIS MEANS IT IS AN AUTOMATIC MESSAGE THAT APPEARS AT THE BOTTOM OF ALL MY POSTS.
Hi! I'm FancyFoxy! I create animations and games that were never, EVER meant to be taken seriously.
FancyFoxy Heroes and #Thanksgiving are some of my latest projects, check them out!

Scratchifier

while I don't think a security question would do the trick, it would be a nice option to be able to set up two-factor authentication for sensitive account functions

https://www.youtube.com/watch?v=UZjUResiK6E
http://thescratchifierspot.weebly.com
Scratchifier music games graphics and more

WaffleChurro

Why would someone hack a Scratch account?

Lets ban Minimods together.

WaffleChurro

doqq wrote:
powercon5 wrote:
doqq wrote:
powercon5 wrote:
Why not just you an answer to those types of questions as your password? They only use the question if you forget yours as they are not as secure as a password. Make sure to pick a good password.

Because even if I do have a good password (which I do btw) someone might still b able to guess it
How are they going to guess it? if it's a good password that's long enough it would be almost impossible. It's much much much easier to guess the answer to a question.

Most people do not have v. good passwords. I know a friend whose password is her irl name! The q and a would be an extra level of security for those peeps who don't have good passwords

This is an example on how people get into accounts. You shouldn't reveal your passwords to anybody if you care so much about the content of your account.

Lets ban Minimods together.

Galleigo

doqq wrote:
so…lets say I got hacked and the mEAN hacker deleted all my projects!! the mEAN hacker found it v easy to delete my projects. because to do so, all the hacker had to do was put in my password, which is weak protection, since if the hacker where able to guess my password, (s)he would easily be able to delete my projects.
so that's where my suggestion comes in!
what if there where a secret question and answer that you had to type in when you joined Scratch? you could write the question and answer yourself (example: question - What is my guinea pig's name? answer - William Afton (yes that's his name hehe) and you would have to type the question and answer to delete your projects! so even if a hacker guessed your password, (s)he would not be able to delete your projects unless they also knew your secret question and answer. :')

not required

stop having horrible passwords

get some help.

(seriously, if a hacker can GUESS your password without even using any bots, your password must be “Password” or something, in which case you would deserve it.)

((╯°□°)–︻╦╤─ – – – :: sensing) :: pen cap

Blocky, a young guard block, guards my signature from kumquats. Still trying to teach him how to shoot the kumquat instead of my signature. By the way, all these coloured URLs still work. Cool, huh? (Sorry for the insane bolding, italicising and underlining. :P)
CYBERSPHERE. They keep coming. It never ends. Can't stop. Won't stop.
My shop is here. Go check it out!
BEAT. How fast are your reflexes?
Space Debris.Tiny floating colourful particles. Nothing much.
Do YOU want to rule? Let's discuss the Rules for Rulers.
Interested in space? Check out The Solar System - Our Home in Space. I was too lazy to colour that one.
ORBIT. Dodge everything to survive!

Discuss Scratch