Whoa, that didn't go down so well. Our shiny new PIN authentication procedure quickly blocked out hundreds of legitimate users, mostly from AOL. So we've removed the code again. Hmm.
In a major step forward in the campaign against people who have nothing better to
do than steal other people's nations, NationStates now attempts to block unauthorized
PIN usage. The PIN is the session identifier built into most hyperlinks
(it looks like: "pin=1234567890") and tells the game who you are: if someone else
gets hold of this, they can sometimes log in as you. For this reason,
strongly advises that you never publicly post a NationStates hyperlink with a PIN
But nobody pays that much attention to FAQs, and people have been posting their PINs all over the place. The new code means that in most cases, attempts to use somebody else's PIN will be blocked.
Incidentally, the second-most frequent cause of nation hijacking is using a public computer and leaving auto-login turned on. Don't do this.