Password Update - April 15, 2020

Update on November 10, 2020:
Hello everyone,

With the today’s Patch 2.6.10, Diablo III in-game account log in has been updated to allow a password exceeding 16 or more characters. Thank you for waiting on this update!


Update on June 8, 2020:
Hello,

We’re afraid to say that we need to push back our deployment schedule for Diablo III in-game account log in with a password exceeding 16 or more characters. Currently we’re targeting October window, and we will let you know more if there is any progress.

Thank you for your patience and understanding!

If your password exceeds 16 characters following this update, you will be able to log into and play Diablo III through Battle.net, but will not be able to log into Diablo III in-game at the account login screen until June 9.


Hello everyone,

To increase account security, we’ll be updating Battle.net on April 15 to allow your account password length to exceed 16 characters, the previous limit. However, it is crucial to note that Diablo III does not support passwords that exceed 16 characters.

We are already planning ahead to resolve this issue as quickly as possible, and plan to have a patch out that addresses this on June 9.

If your password exceeds 16 characters following this update, you will be able to log into and play Diablo III through Battle.net, but will not be able to log into Diablo III in-game at the account login screen until June 9 .

Thank you for your patience as we work on a solution. We’ll see you in Sanctuary!

18 Likes

Hello new community manager!
Heartwarming welcome from Diablo community.

6 Likes

Wowza…seems…an oversight.

2 Likes

“Play Diablo III through Battle.net”. We should only be able to play like this anyway. Many cheaters would be busted.

2 Likes

A patch on june 9th . Interresting :wink:

2 Likes

Hi there Cydra! Thanks for tackling yet another CM role at Blizz on top of your other ones! I appreciate the support, even if it is temporary! Enjoy your stay here :slight_smile:

Not really. An oversight would be not realizing the old D3 client could not handle longer passwords and ignoring it.

They are not ignoring it. They know about the issue, but can’t get it fixed before the security rollout needed to go live.

They warned us about it, gave us a fix date, and told us how to ensure we can still log in using the Bnet launcher.

This will only impact people who do two things:

-Change their password to be longer than 16 chars
-Use the launch command instead of the launcher (or try to log in again via the D3 client if DCed).

I am honestly very glad they are making security improvements AND that they were honest about the temporary issue with the old D3 client.

8 Likes

Welcome to the D3 Forums Cydra and

or more than 16 characters. :smiley:

1 Like

It is not a game patch but an infrastructure patch.

My recollection is Patch 2.6.8 went live March 3. Season 20 started March 13. It still will be a few weeks before the next PTR is released assuming that coronavirus has not delayed things. Patch 2.6.9 at the earliest would be in mid-late June assuming season 20 last 3 months.

This would create a problem for multiboxers which is allowed by Blizzard.

1 Like

So the logic is sell more game licenses? Same logic can apply to bounty bots. Sell more game licenses.

How many people you know who multibox? I dont know anyone.
How many people you know who bot? I know many players how bot.

I do not know the numbers that fall into each category (multiboxers vs. cheaters). I suspect that there are more cheaters. I do not think that a login change would have a long-lasting effect on cheater numbers.

A number of years ago the Blizzard site was hacked and we were told then to update our passwords.

At that time the password limit was at least 24/26 character length.

I changed mine at that time and it worked for years until a couple years ago when Blizzard announced they were dropping the password length to 16 characters.

I changed mine to 16 and all has been well since.

Really a bit of a roller coaster ride if you ask me.

So now we change our passwords back to 24/26 in length?

If you want to, sure. There is no requirement to do that. There is no current security incident causing this. This is just an over all security update because people keep asking for it.

Just keep in mind if you do change it, you need to always log in with the Launcher.

1 Like

On most web sites I log in to I have used 26 length alpha-numeric-punc for years.

A small number of websites are stuck back with max 12 character alpha-numeric username/pass.

1 Like

Most probably because people tend to use same password for different services. People don’t like to have few different passwords due to restrictions. Hack someones facebook and you can probably play games with his account xD

2 factor Authentication is way more important than password length.

2 Likes

Only a troll or legitimate moron can make an issue out of this post. It is clearly and eloquently stated that there is a issue, they are aware of it, it’s going to get fixed, and in like 99.9% of cases it wont affect your life in any way. Besides, if you’re using an authenticator your password can basically be 12345

1 Like

Hello. Any plans to post an equivalent sticky on the EU forums too?

2 Likes

A wild Cydra has appeared!

  • FIGHT
  • DEFEND
  • SPELL
  • CAPTURE
  • EAT ⬅️
  • RUN

Are you sure?

  • YES ⬅️
  • NO

:smiling_imp:

3 Likes

That’s how I do it. I didn’t know you could play D3 any other way.

Welcome Cydra. Warm hugs.

A new ally has joined , but the minions of Hell grow stronger .

2 Likes