Do you use Steam Guards Mobile Authenticator?
I highly recommend you use Winauth. It's safe and it emulates authenticators for many games to include Steam. I use it personally for 6 things and I have separate hotkeys which copy and paste the code for me for stuff like battle.net and steam. It's worth the extra protection and I've been using Withauth for around 4 or 5 years now. It's open source, so the code is transparent. In short, you don't need a smartphone to have the security you deserve.
Comment has been collapsed.
I'm not using it ... but from what i've getting is this:
from 23rd on you'd have to confirm trades from the Steam Mobile App > so the text says in the screenshot
if you wan't to disable: it you'd have to use that smartphone and probably the same sim (not sure for the sim) * see FAQ
but it may only require using the same phone + installed app WHILE having access to the interwebs on the phone (not sure either ...)
^ that if it works out, or you have to contact steam support to disable it ... according to the FAQ
Comment has been collapsed.
Aye, as it is in the topic - affects only people using the Mobile Authenticator. Good for you, not having it enabled :D currently.
Comment has been collapsed.
You use the mobile steam app. If you have it activated. everytime you purchase something or want to send a gift or anything that affects your inventory or steam wallet (except puting card(icons in the market) steam ask for an additional 5 letter/digit code that is shown in the bottom part of the steam app in your mobile. (you only have to launch the app its not necesary to be logged into steam in the mobile app).
Comment has been collapsed.
hi, the text points clearly @ having to use the s.m.app for the confirmation. also deactivating the authenticator
requires using the app or in case you lost/trashed your phone > contacting support.(according to the faq)
Comment has been collapsed.
Well, I did give Valve my phone for some protection. But if I'll have to confirm every trade, then I'll either have to stop trading and exchanging duplicate cards, or I'll have to cancel Steam Mobile Auth., as apparently I have to pay for all messages from Valve.
Or are those two different things?
Comment has been collapsed.
From Steam Guard Mobile Authenticator FAQ:
"Do the SMS messages you send cost me anything?
Standard messaging charges may apply; check your wireless phone plan to confirm".
I don't have problem paying for one SMS once in a years, when I need to login somewhere else/buy new PC. But trading is something much more often...
Comment has been collapsed.
I have to pay for 3rd+ or 5th+ SMS I receive from my bank when I do Internet Payments and need code to authorize (I barely need 2 a month, so not exactly sure when it starts).
And those "Horoscopes" and other stuff that has "subscribe and receive SMS a day about stuff" also take money out of your phone for every SMS received.
Comment has been collapsed.
It's mostly for subscriptions (like "Daily Horoscopes"), but yes, it happens.
I gave Valve my phone number and received SMS with code, no idea if those two things are treated as same Valve Mobile Auth., or something completely different.
...hmmm, maybe I'll try to login on laptop, just to see what will happen...
Comment has been collapsed.
some info from a steam mod
"Seems you got the rumor wrong.
After the 22nd if you are using steam mobile to authenticate you will need to use steam guard mobile auth to confirm.
If you dont use steam mobile auth you dont need to confirm with a mobile.
in layman terms: people who dont use the app wont be affected by this
Comment has been collapsed.
thanks for info
never think to give valve my phone number
but maybe very useful for people who set their alts as storage massive amount of expensive items
Comment has been collapsed.
This won't stop people from running a mile with yet another "GRR, ARG, STEAM DID A THING, LETS BE ANGRY FOR NO APPARENT REASON" deal.
I really can't understand why some folks are so quick to assume the worst of Valve with their track record.
Comment has been collapsed.
Just let me use third-party apps for 2FA. I don't want to use the Steam app when I have a perfectly working Authy.
Comment has been collapsed.
I'm just going to do what most of the other people here will do : Just not use mobile authentication as an extra layer of security for marketplace trades. A bit like how you don't have to do email confirmation on all trades.
I guess life would be boring without yet another doomsday meteor to chant about.
It's not like the article itself explains how to disable it if you don't want it or anything. \:3/
People are so quick to rail on Steam. It's almost like they WANT to be angry at something, a bit like how (happily) excited the certain people get whenever they hear rumours of yet another doomsday meteor.
Comment has been collapsed.
Well i'd say that will be perfectly reasonable - have you seen anywhere an announcement being made?
Except for the pop up asking for your phone number, and if you trade you'd might have seen the Note in the Window.
Much like the changes with Gifts > they happened OVER NIGHT with 0 announcements. Sure this isn't as important,
but will fuck with lots o' folks and make them angry why? Their not expecting it, and will prove as an unpleasant
surprise in one or another way.
From what i'm getting you need a interwebs connection + steam app on your phone ... for the trade confirmations if you'd use Mobile Auth. And deactivating it requires that phone, interwebs and use of the steam app > if you don't have those > steam support.
^ Easy to figure what could become an obstacle ...
Comment has been collapsed.
Being annoyed at not enough information is different to gathering up in united, open anger on Valve/Steam as a whole. Adding a new layer of optional security doesn't effect anybody who doesn't want to use it, hence why I couldn't understand the sudden wave of anger. Not expecting something doesn't really validate anger beyond a certain level (surprise birthday parties? heh). Unexpected or not, it's still a positive and optional thing they added.
And yeah, as far as I can tell, it's just a mobile confirmation layer. Still optional though, and no, it seems that you need an internet-enabled mobile device to ENABLE it, and it starts off disabled. See, these are the kinds of things that people should check before they start dropping tantrums. Having a collective stomping fit just in case they maybe do something really dumb, and not actually checking to see if they did? Yeah, that still makes the kneejerk "OMFG STEAM U SO BAD" deal still pointless bandwagonry.
Comment has been collapsed.
You're obviously unable to relate ... yet willing to debate about something pointless and insulting outside the subject, that doesn't even exist (here & YET) - namely that tantrum/hysteria/bandwagon of "united open anger". Good luck finding one after the 23rd October i'd guess you won't have a hard time doing so.
Oh and since you bothered to point this out:
Still optional though, and no, it seems that you need an internet-enabled mobile device to ENABLE it, and it starts off disabled.
"And no" - what? Eager to disagree, aren't we?
Starting on 23rd October people using SGMA - Steam Guard Mobile Authenticator will have to confirm their trades with the Steam Mobile App.
^ Doesn't that go without saying - its in the very first sentence i put up and even highlighted the "crucial" part?
(using it = having it ENABLED)
Comment has been collapsed.
Interesting. There's only one page to this thread? I could have sworn there were several, and looking back on the comments they do all seem pretty chill/neutral. I could have sworn it there were more pages, and there was the (usual) "omfg steam is the worst" / "this is just another middle finger to us customers!" / "boycott XYZ!" bandwagon rolling. I'm not even sure how I made this mistake, and a bit perplexed at that. Paranoid, even. :s
"Eager to disagree, aren't we?"
Eager to be passive aggressive, aren't we?
Seriously, cut that out. :P
My point was that if you were using the mobile authenticator, it should be an absolute and complete non-issue because that very prerequisite establishes that you have a mobile device and connection to begin with, which seems to be the entirety of the criticism it is drawing. "But what if I don't have a mobile device that can use an authenticator app?". It wouldn't apply. Unless there is something vital I'm missing here? Because at the time of my previous post I really didn't pick up on any other subtleties.
To summarise what seems to be the central gripe going down here with a sloppy example :
"Starting next week, people who use a horse-drawn carriage to access to this road will have to pet their horse on the head on each time they trade!"
"But what if I don't have a horse-drawn carriage or use this road? THEN WHAT!?"
Comment has been collapsed.
"Starting next week, people who use a horse-drawn carriage to access to this road will have to pet their horse on the head on each time they trade!" "But what if I don't have a horse-drawn carriage or use this road? THEN WHAT!?"
And here i thought you didn't understand, but you do - only you don't see the (potential) problem, good for you ...
e. added Note1 and Note2 - your posts inspired me, that people might want to read a more foolproof text,
that takes you gently by the hand and leads you straight to that Dreamland, with the horse-drawn carriage
(oi, thx m8te - you're aye riel loif saver)
Comment has been collapsed.
Alrighty:
Comment has been collapsed.
1) Hmm, that would suck. Normally I would just call that a trade-off for the extra security, but I imagine being unable to use the marketplace until steam support eventually gets around to responding would be something worth grumping about. But that's just it, grumping, not hating. An awful lot of the people who have been harsh on new security measures have also in the same breath complained about items going missing and that steam aren't doing enough. It's either one or the other. Security or convenience. It's rare to find a solution that has both. The system could use some tweaking though.
2) I believe that's to make sure the verification is successful. Consider that if someone hijacked your account and was trying to feed your gear off out to a launderer, if they could simply disable the mobile confirmation from wherever they log in, it kind of undermines the reason for the mobile authentication step. Still, I agree, that's a pain. Perhaps a second password could have been used to disable it from within the client?
3) Yeah, a little annoying but easily shrugged off. Pretty sure there's a button that says 'not now' or 'no thanks', and Steam have asked for this information long before these changes came about (SMS verification, account reset, etc?).
4) They won't ever make that step mandatory simply because not everyone will own a smartphone (or a supporting smartphone).
6) I didn't really see that as an issue, until I considered what it would be like trying to trade for a batch of single items (like a card set). Though the email trade confirmation thing only triggered when you were trading directly with someone. Using the marketplace itself circumvented that, and really unless an item is rare or something more expensive, the marketplace is far quicker and usually cheaper than trying to find an individual trader manually.
7) It seems Valve's reasoning here, is that if you're already using your mobile to use steam services to begin with, then the mandatory mobile verification step wouldn't be too much of a problem. It relies on the physicality of the phone to serve as a form of identification, whereas any other hijacker is pure digital in nature and highly unlikely to have also stolen your phone. The only people these kinds of tiny delays are likely to impact are people who systematically try to turn a profit off trading, and that was never really the intention of the marketplace. Still, Valve could have perhaps toyed with the idea more before going through with it. Community input might have yielded some good ideas, but it really comes down to either having quick and convenient transactions, or secure transactions and more resistance against hostile efforts.
I'm sure Valve will rethink it after they get swamped with trouble tickets, though! >:3
Comment has been collapsed.
Good arguments - yeah, no matter whats to come its unlikely to stay
in a "unfavorable/vulnerable" state, until updated again.
Wouldn't make SGMA the devil or anything ... still doesn't appear
to be what i'd want to use from what i've seen/read so far.
Comment has been collapsed.
Wouldn't doubt that ... giving your phone number is just a step to prepare you for its optional use.
Comment has been collapsed.
I wouldn't mind this... but they really should add more options to generate codes. Being able to use the Google Authenticator app would go a long way to support more devices for example. It's a solid app that has sort of become standard for a lot of services.
Also, it would be really nice if they had hardware authenticators similar to what Blizzard has with Battle.net. Basically a cheap little keyring that can generate codes. I'd get one of those for Steam in an instant if they were available.
They can do a lot more than what they are doing currently to make it easier to use.
Comment has been collapsed.
Well, I have shitty Bada (Samsung GT-S8500) and Steam Mobile App dont support it, so idk if this new rule good or not.
Comment has been collapsed.
No need to worry, you can't be affected - you'd have to enable the SGMA protection first,
which requires to my "FAQ-knowledge using a phone with the Steam Mobile App.
Comment has been collapsed.
316 Comments - Last post 9 minutes ago by atti
35 Comments - Last post 41 minutes ago by korinsden
24 Comments - Last post 2 hours ago by OneManArmyStar
165 Comments - Last post 2 hours ago by ngrazer
40 Comments - Last post 9 hours ago by xMisiu
812 Comments - Last post 10 hours ago by PicoMan
2,046 Comments - Last post 13 hours ago by Gamy7
726 Comments - Last post 12 minutes ago by CptWest
842 Comments - Last post 18 minutes ago by CptWest
2,481 Comments - Last post 18 minutes ago by galiane
51 Comments - Last post 20 minutes ago by AlexSaysSG
233 Comments - Last post 33 minutes ago by moonlightdriver
28,710 Comments - Last post 33 minutes ago by SolvedPack
24 Comments - Last post 48 minutes ago by meneldur
Starting on 23rd October people using SGMA - Steam Guard Mobile Authenticator
will have to confirm their trades with the Steam Mobile App.
Note1: Giving your phone number is just a step to prepare you for its optional use.
Note2: using SGMA = having it enabled - if you did not enable it, you're not using it ...
Not that i'd know but if they do that for trades, then it'll be pretty much used for
everything that requires a confirmation, if not yet in due time - i'd guess.
Added a poll just for clicks ... might explain why the steam community is/was sporadically offline since yesterday.
Personally i don't, and don't care much for it, as long they don't request a phone number or to have M.A. in general for confirmations.
Android/snapple os phones aren't exactly known to be safe Systems (even though i don't "fuck around", on my phones)
safe(r)(st) are probably the ones that aren't very popular: BrokeBerry, Tizen?, Bada?, Windows ...
Comment has been collapsed.