Improving Security for Linden Dollar Access Requests
badunicorn Resident
I’m writing to suggest an improvement to the security prompt that appears when an object requests access to take funds from a user’s Linden Dollar account. Currently, the message only displays the object’s name, which can be vague and may not provide enough information for users to make an informed decision. Given the potential risk, I believe this prompt could benefit from additional details to help users determine whether they should grant access.
Adding the creator's name next to the object’s name in the prompt would help users verify if they trust the source of the request. This additional information could prevent users from unintentionally granting access to suspicious or unauthorized objects.
To further enhance security, a "Verified" checkmark could be implemented for trusted or high-reputation creators. This verification badge would help users recognize legitimate objects from creators who meet specific safety criteria set by Linden Lab or have a record of safe transactions. The combination of the creator’s name and a verified badge would provide users with a clear and trustworthy indicator, while the absence of a badge would encourage users to exercise caution.
Log In
Nyx Onyx
I'd like to have the option to only give permission on a per-transaction basis. Basically, having it display the Pay-window for each transaction rather than giving the object / script a blank cheque, if I prefer that.
Dana Enyo
I don't need the Creator's name in there. I WOULD like to see the name of the account where the money is going.
This isn't always a safety/security thing--my inworld store vendors give a percentage of every sale to the sim owner (or sometimes a charity). That's a setting done by ME, and it would be a final check that I did it correctly.
V
VriSeriphim Resident
I agree, add the names of the accounts where the L$ is going.
Also, include the description of the object. Sometimes that can include additional useful information.
Bleuhazenfurfle Resident
Along with a bigger scarier message, more information on the sender of the request, should really be standard in all permissions requests… Name, owner, land group, and the opportunity to go look at the thing.
Not sure I like the verified creator badge, though… That kind of classism often backfires (just ask Twitter/X), as well as creating a barrier to smaller creators trying to get established.
LeillaLux Resident
Bleuhazenfurfle Resident There are many types and reasons for verification so it would depend on how it was implemented. (incidentally I disagree with the X statement as I don't feel it backfired, since it's actually helpful in it's current practice to determine false accounts easier but that's a little different scenario than in SL). Also the warning is already pretty scary lol though displaying more info couldn't hurt, I agree there.