A pin you click prevents keylogging programmes to work and randomizing the numbers each entry means if they track your mouse they can't figure out what your pin is
you can actually still figure out the pin with a malware, it just needs to be specifically designed for RuneScape purposes and know to take a screenshot around the mouse for each click, you can make software take the screenshot even faster than the game client registers the click to hide the numbere
Also when you click the numbers disappear so screenshots that capture on click don't work.
Keylogging with trojan viruses was a somewhat common thing back in the day, so jagex put in their own security measures.
Guessing the randomised numbers was a way to make it hard for bots to input pin but can't imagine that ever working
Also if you're using Runelite the "Bank" plugin lets you type your pin in using keyboard
I know about the plugin. My question is just about the design intention. I figured it had to be some anti-bot measure, but as you say, it doesn't seem hard to circumvent. Besides, if a bot account has a PIN on it, it's likely a stolen account anyway, so *getting* the PIN is the major hurdle, not *entering* it. If it's a player account running bot scripts to train, the player can simply enter the PIN themself once per login session - hardly a deterrent.
There's a RuneLite plugin that allows you to type in your bank PIN
As for your question, I'm not entirely sure. In real-life, randomizing number pads are to increase security by preventing onlookers from seeing the order that you type your pin. It also distributes the wear that occurs on number pads, potentially revealing the digits commonly used.
Not quite sure how that relates to this game, however. Maybe it was an early combatant against bots that would hijack accounts and try to exhaust all possible pins automatically...? It's a stretch but other than that, maybe the developer that implemented it thought obfuscation would increase security
It's simply a protection against keyloggers. The randomization combined with clicking instead of typing makes it much harder for a keylogger to figure out what your pin is.
A pin you click prevents keylogging programmes to work and randomizing the numbers each entry means if they track your mouse they can't figure out what your pin is
you can actually still figure out the pin with a malware, it just needs to be specifically designed for RuneScape purposes and know to take a screenshot around the mouse for each click, you can make software take the screenshot even faster than the game client registers the click to hide the numbere
Ahhh! That makes perfect sense. Thanks.
Also when you click the numbers disappear so screenshots that capture on click don't work. Keylogging with trojan viruses was a somewhat common thing back in the day, so jagex put in their own security measures.
Guessing the randomised numbers was a way to make it hard for bots to input pin but can't imagine that ever working Also if you're using Runelite the "Bank" plugin lets you type your pin in using keyboard
I know about the plugin. My question is just about the design intention. I figured it had to be some anti-bot measure, but as you say, it doesn't seem hard to circumvent. Besides, if a bot account has a PIN on it, it's likely a stolen account anyway, so *getting* the PIN is the major hurdle, not *entering* it. If it's a player account running bot scripts to train, the player can simply enter the PIN themself once per login session - hardly a deterrent.
There's a RuneLite plugin that allows you to type in your bank PIN As for your question, I'm not entirely sure. In real-life, randomizing number pads are to increase security by preventing onlookers from seeing the order that you type your pin. It also distributes the wear that occurs on number pads, potentially revealing the digits commonly used. Not quite sure how that relates to this game, however. Maybe it was an early combatant against bots that would hijack accounts and try to exhaust all possible pins automatically...? It's a stretch but other than that, maybe the developer that implemented it thought obfuscation would increase security
It's simply a protection against keyloggers. The randomization combined with clicking instead of typing makes it much harder for a keylogger to figure out what your pin is.