KnacK: I'm not sure if I follow, but it sounds kind of like we're saying the same thing. The password would be encrypted in the database. I'm not sure I see the need for questions and answers, though. A simple username and password should be sufficient, no?
Also, it might be nice to be able to "save" your password, so that you don't have to log in every time you play. I wonder what the most secure way to do that would be.
I'm going to implement the login system first, then we'll worry about stats later. One thing at a time.
The two main purposes stats will serve right now are protecting users names and combating cheaters.
Oh, a couple notes I forgot to mention about the logins:
- They'd be alphanumeric only and case insensitive. Color codes, spaces, splats, etc. will be stripped off (this should cut back on people doing clever things to create names that are visually the same, but technically different).
- There will be a primary name and two alternate names. The primary name will remain the same, but the alternate names can be changed every, say, 2 weeks (in order to allow for clan tags and whatnot).