I tried to ask a question about this in the in game ticket system but I got pretty bad results but at least there were able to point me to this forum. I am trying to setup a group policy object to disable known insecure protocols, ciphers, hashes, and key exchanges. I noticed after doing this that wow was no longer able to log in to the battle net client or directly into the game. I just kept getting the error “we can not log you in with what you have provided”. As soon as I turned back on rc4-128 and the hashing of sha-1 everything started working again. Seeing as this is a game that I put my credit card information and person information about my self can I get an explanation as to why blizzard can not enable more secure ciphers and hashes? I understand for compatibility that you might choose to keep the older ciphers enabled but why is that the only option?
No one in the Support can answer questions about development choices. Those are strictly in the domain of the development team, and they do not participate in rhe Support forums (and only very rarely in any forum). And they generally never answer “why” questions or defend their choices.
You might want to file a bug report in the Bug Reports forum if you think this is something the devs should rectify, but will be no discussion.
That would be a bit outside of the range of what tech support by ticket could answer, let alone a player discussion forum. @warcraftdevs maybe? Of course there’s some pretty smart players who post here. Good luck.
I’ve seen some older posts on the bnet apps forum
Ok, sorry I was told by a gm to ask the question here.
Actually, the usual GM referral to the forums is typically directed toward the Bug Reports forum, because they know full well that developer decisions are not explained or challenged in Tech Support.
This is an exact copy and past from the ticket with the gm.
Thank you for writing to us again. I'm sorry to hear about your experience.
According to our team's investigation, to avoid affecting your game performance, we recommend following the system's suggested methods for gameplay.
Since we're unable to pinpoint at which stage of the game you encountered this issue, we suggest you send us a screenshot of the error screen to aid our further investigation.
Alternatively, you can also reach out to our technical support for an in-depth investigation:https://us.forums.blizzard.com/en/wow/c/support/technical-support/15
Well, we’ll see if a Blue will pick up on this.
The GM’s suggestion may be unhelpful if the Blizzard employees associated with this forum don’t agree that this is something they can troubleshoot.
Sounds like that GM might need more coaching for tickets. The forum is player supported, so any additional troubleshooting would come from fellow players.
Anything important, like account login information, credit card information, etc, would likely use a far more secure method. My guess is the battlenet client requires all the various security options for all the various operations the client might need to perform. Maybe chat or game updates use a faster but weaker protocol. See where I’m going with this?
It’s likely an all or nothing type setup where if they detect even one of the various methods not working, they deny access entirely. Think of it like an AND operation in boolean math.
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.