Email address change should have better confirmation

[Phaen]

Currently, changing the email of an account requires only the password. This is a problem for people who sometimes like to share characters with their villagemates such as a chieftain alt, crafting alt, or keyalt. Its also a concern for anyone letting another person borrow their account while they are away from the game. Any one of the people with access could change the password and email, claiming it as their own forever.

Perhaps this is meant to be intentionally unsafe, but I suggest giving the account owner more security.
I think the email change should require not just the new email but also the old one, as well as confirmation emails for both.

The way it works currently:
1. Log into havenandhearth.com
2. Enter the new email and current password
3. Press OK, which sends a mail to the new email
4. Log into the new email and confirm by clicking a link

Ideally it would work like this:
1. Log into havenandhearth.com
2. Enter the old email address
3. Enter the new email address
4. Press OK, which sends mails to both
5. Log into the old email and confirm by clicking a link
6. Log into the new email and confirm by clicking a link
7. Go back to havenandhearth.com and confirm the swap

This way even if the account owner is canoodled out of his password, he still has a path to recovering the account in the event of a password change.

[TamaOkina]

This sounds like a good idea to me.

[borka]

too bad if you don't have access to the old email account anymore

prolly it might be better to ask a control question - the answer is given when account is created and stored in database

[SuperNoob]

what about a security question when changing things in an account like passwords or email adresses? I never share an account with anyone, but I understand why its done with key alts in villages before idols and CRs are up...

[Phaen]

And btw... no, I'm not posting this because of a personal loss.
I've never had an account stolen. I've only shared with people I trust and only for a limited time.
Its just something that's been on my mind in light of the events lately.

edit: Not sure what exceptions can be made about lost old email access :s is this a common problem?

[borka]

for sure a good suggestion

[Arcanist]

send a link to the old email, either wait for confirmation/cancelation, or wait 48 hours.

[LadyV]

I agree an extra step of protection would be nice.

[ramoness]

Just a quick thought about account security, wouldn't it be better that email address that you register hnh account with couldn't be changed at all? In that case, no one can actually steal your account? Even if your password is guessed or gained anyhow, you are still able to obtain it back (well, if char is dead or not that does not matter, i'm only looking account-wise).

Or did I maybe miss anything negative here?

[Oddity]

Just a quick thought about account security, wouldn't it be better that email address that you register hnh account with couldn't be changed at all? In that case, no one can actually steal your account? Even if your password is guessed or gained anyhow, you are still able to obtain it back (well, if char is dead or not that does not matter, i'm only looking account-wise).

Or did I maybe miss anything negative here?

What if you lose access to the email address?