Register - Login
Views: 99824960
 Main - Memberlist - Active users - Calendar - Wiki - IRC Chat - Online users
Ranks - Rules/FAQ - Stats - Latest Posts - Color Chart - Smilies 		05-03-22 07:51:59 PM
Jul - NO! GO TO STAR! - Security notice for selected users New poll - New thread - Thread closed
Pages: 1 2 3 4 5 6Next newer thread | Next older thread
Orlandu


Holy SwordsMan
Level: 137


Posts: 546/5913
EXP: 30480554
For next: 392301

Since: 01-12-10

From: Las Vegas, NV

Since last post: 4.0 years
Last activity: 208 days
Posted on 04-30-10 08:51:20 PM Link
Originally posted by Milly
Nope, it's been MD5 ever since I switched the database to MySQL (and even before that, it was some weak reversible encryption) I used another reversible encryption for cookie passwords, as well ...

However, there were quite a few ways to get the database/cookie passwords, even in plain text (reading the login info from the reply page, with JavaScript)


(edited)
Ok, it actually was plain text at first But that changed to MD5 somewhere between 1.61 (April 2001) and 1.8 (March 2002), maybe in 1.65 or 1.7 ...


Account hacking and identity theft weren't as big back then. And there weren't password sniffing bots checking every site for security loopholes.

____________________
 
Yuuko
10
Level: 8


Posts: 7/10
EXP: 2103
For next: 84

Since: 03-22-10

From: Candoridge

Since last post: 11.7 years
Last activity: 9.4 years
Posted on 04-30-10 08:51:56 PM Link
Originally posted by Xkeeper
The problem with updating the newreply/newthread pages to not use a typed password for logged in users means that you can't really make use of alternate accounts.

Not a big deal, but just one of those things I'd be missing.

I, for one, wholeheartedly agree. It's nice to post while logged out too if you need too >.>

____________________
Xkeeper

Level: 263


Posts: 15857/25353
EXP: 297155672
For next: 1804781

Since: 07-03-07

Pronouns: they/them/????????

Since last post: 3 days
Last activity: 12 hours
Posted on 04-30-10 08:53:18 PM Link
Posting while logged out wouldn't change, just while logged in.

____________________
Post 1107/1311 (41 days), online 2 days ago
Posted on 04-30-10 08:53:55 PM Link




#52
Originally posted by Orlandu
Account hacking and identity theft weren't as big back then. And there weren't password sniffing bots checking every site for security loopholes.
And that ... this was at a time when PHP still enabled register_globals by default, not even deprecated And it still took a whole year before the many security holes started causing problems ...


And yeah, I put those autofilled fields in for the same reasons, remember how many of us had alternate accounts back then

____________________
Taryn

Passed away.

Thanks for being a part of us, even if it wasn't always on the best of terms.

1987-2014


Level: 204


Posts: 6952/14742
EXP: 121752885
For next: 1596933

Since: 09-01-09

From: Seattle

Since last post: 10.1 years
Last activity: 9.8 years
Posted on 04-30-10 08:56:23 PM Link
I'm not sure if I ever posted at any AcmlmBoard while logged out. I'm pretty sure that I never have at Jul, though.

Yeah, in the early 2000s there weren't nearly as many bots in general. Web sites usually only needed a username, password, and maybe E-mail to register, not all these CAPTCHAs and such.

____________________
TKB Super Mario Bros.
Bitmap
Banned Forever
Banned for being a dick on the board, in private messages, and then taking that dick-ness off the board and harassing members elsewhere for it. Time to go!

Level: NaN


Posts: 4653/-5501
EXP: NaN
For next: 0

Since: 04-19-09

From: Cataula Georgia

Since last post: 9.9 years
Last activity: 9.9 years
Posted on 04-30-10 08:58:38 PM (last edited by Bitmap at 04-30-10 06:03 PM) Link

E- Actually, I should think twice about posting that

spoiler below was what I said. But I did not mean this to people who might find the F-word offensive.





____________________
__________________________________


twitstamp.com
FPzero
9590



Post 8639/9597
Active 5.5 years ago
Posted on 04-30-10 09:20:11 PM Link
Glad to see I wasn't affected. Kind of surprising because while my pass is random, it's probably not as secure as ones I have in other important places like school stuff.

Originally posted by Xkeeper
about 150 accounts registered.

Gotta catch 'em all!

____________________




Orlandu


Holy SwordsMan
Level: 137


Posts: 548/5913
EXP: 30480554
For next: 392301

Since: 01-12-10

From: Las Vegas, NV

Since last post: 4.0 years
Last activity: 208 days
Posted on 04-30-10 09:25:32 PM Link
Originally posted by FirePhoenix
Gotta catch 'em all!


He's missing Mega-Mew with only 150. I never understood why Mewtwo was numbered before Mew...

____________________
 
Lyskar
12210
-The Chaos within trumps the Chaos without-
Level: 192


Posts: 5375/12211
EXP: 99326018
For next: 547553

Since: 07-03-07

From: 52-2-88-7

Since last post: 7.4 years
Last activity: 7.3 years
Posted on 04-30-10 09:26:25 PM Link
Stats
Time/Date
04-30-10 03:26:25 PM
Posts
5375
Days Here
1032
Level
106
Metal_Man88's Post
Nice work trying to steal my intentionally useless password, Mega Mario.

Did I mention how annoying those autofilled fields are when I change my password?

____________________
Don't let an old saying get in the way of a good idea.
Eisnaught - SSQ² - Mobius Roleplay - SSS
FPzero
9590



Post 8641/9597
Active 5.5 years ago
Posted on 04-30-10 09:28:46 PM Link
I never allow autofill password or the use of a master password for security reasons. I've had Arbe hack my smwc account before because it was the same pass as on his board back when I was there. That sure taught me to use different totally random passwords everywhere I go.

____________________




Hiryuu

Level: 207


Posts: 13049/14435
EXP: 127628335
For next: 2155819

Since: 07-06-07


Since last post: 11.8 years
Last activity: 11.7 years
Posted on 04-30-10 09:30:07 PM Link
Originally posted by FirePhoenix
I never allow autofill password or the use of a master password for security reasons. I've had Arbe hack my smwc account before because it was the same pass as on his board back when I was there. That sure taught me to use different totally random passwords everywhere I go.


Mine was my Y! mail account. Still got the e-mail he mass-raided.

Oh and my initial YT account. Also downed by him.
Tyty

Level: 165


Posts: 7359/8599
EXP: 58676371
For next: 259310

Since: 07-07-07


Since last post: 9.8 years
Last activity: 9.8 years
Posted on 04-30-10 09:33:00 PM Link
I am so glad I don't use that password anymore. It wasn't very secure anyways. Hell, I use my reallyold one more often than that one.

____________________


<devin> i feel like i have improved someone's childhood
<Bitmap_Dale> Devin you fuck
Gabu

Star Mario
Placeholder Ikachan until :effort: is found
Level: 172


Posts: 2885/9981
EXP: 67993307
For next: 108927

Since: 08-10-09

Pronouns: they/them, she/her
From: Santa Cruisin' USA

Since last post: 57 days
Last activity: 4 days
Posted on 04-30-10 09:34:39 PM Link
Originally posted by FirePhoenix
I never allow autofill password or the use of a master password for security reasons. I've had Arbe hack my smwc account before because it was the same pass as on his board back when I was there. That sure taught me to use different totally random passwords everywhere I go.


Funny how that's easy to say, but hard to do. I have the same password on too many websites (though to be fair, some are slightly modified and it uses letters and numbers, so it's not terrible, but still)

____________________
Dprotp
GIRL'S GOT A PENITENTIARY BODY
Level: 107


Posts: 1836/3147
EXP: 12994121
For next: 97190

Since: 07-04-07

Pronouns: he/him
From: FIRE STATE

Since last post: 1.5 years
Last activity: 106 days
Posted on 04-30-10 09:50:56 PM Link
i still don't understand why he's still going at this

i wonder what he's like in person

Originally posted by Hiryuu
[We know drama.





____________________
Lyskar
12210
-The Chaos within trumps the Chaos without-
Level: 192


Posts: 5382/12211
EXP: 99326018
For next: 547553

Since: 07-03-07

From: 52-2-88-7

Since last post: 7.4 years
Last activity: 7.3 years
Posted on 04-30-10 10:02:22 PM Link
Stats
Time/Date
04-30-10 04:02:22 PM
Posts
5382
Days Here
1032
Level
107
Metal_Man88's Post
I would reckon he has nothing else to do and is bored, so his recreational activity is trying to next thing to try and annoy us.

____________________
Don't let an old saying get in the way of a good idea.
Eisnaught - SSQ² - Mobius Roleplay - SSS
plushifoxed

King Yoshi
la chica dijo...

Mood: The current mood of roxiemika at www.imood.com
Level: 119


Posts: 2906/3990
EXP: 18466742
For next: 462549

Since: 08-22-07

Pronouns: it/its or she/her
From: kamihama city

Since last post: 2 days
Last activity: 1 day
Posted on 04-30-10 10:40:13 PM Link
Supakitsune
Originally posted by Gabu
Originally posted by FirePhoenix
I never allow autofill password or the use of a master password for security reasons. I've had Arbe hack my smwc account before because it was the same pass as on his board back when I was there. That sure taught me to use different totally random passwords everywhere I go.
Funny how that's easy to say, but hard to do. I have the same password on too many websites (though to be fair, some are slightly modified and it uses letters and numbers, so it's not terrible, but still)
...I'm guilty of this as well.
I heard about some Firefox plugin that lets you enter a master password and it'll generate random passwords for the sites you go to or something?

____________________

every aspect will be reborn innovatively
Join Jul's Folding@Home team and help the science get done!
Supakitsune's Tumbln' Thoughts - Catch me on Twitter!
Hiryuu

Level: 207


Posts: 13054/14435
EXP: 127628335
For next: 2155819

Since: 07-06-07


Since last post: 11.8 years
Last activity: 11.7 years
Posted on 04-30-10 10:42:39 PM Link
Originally posted by Supakitsune
...I heard about some Firefox plugin that lets you enter a master password and it'll generate random passwords for the sites you go to or something?


Not a plug-in. Setting. It's in the Option, under Security. Click the checkbox for it.
plushifoxed

King Yoshi
la chica dijo...

Mood: The current mood of roxiemika at www.imood.com
Level: 119


Posts: 2907/3990
EXP: 18466742
For next: 462549

Since: 08-22-07

Pronouns: it/its or she/her
From: kamihama city

Since last post: 2 days
Last activity: 1 day
Posted on 04-30-10 10:56:50 PM Link
Supakitsune
Originally posted by Hiryuu
Originally posted by Supakitsune
...I heard about some Firefox plugin that lets you enter a master password and it'll generate random passwords for the sites you go to or something?
Not a plug-in. Setting. It's in the Option, under Security. Click the checkbox for it.
......................

It was there the WHOLE GODDAMN TIME and I didn't notice...?!

____________________

every aspect will be reborn innovatively
Join Jul's Folding@Home team and help the science get done!
Supakitsune's Tumbln' Thoughts - Catch me on Twitter!
Joe
Common spammer
🍬
Level: 111


Posts: 1339/3392
EXP: 14501878
For next: 366482

Since: 08-02-07

From: Pororoca

Since last post: 12 days
Last activity: 11 min.
Posted on 04-30-10 11:07:27 PM Link
I'm glad my old password was 15 characters long.

____________________
fin
system~of~a~down~guitar

Level: 26


Posts: 16/127
EXP: 94956
For next: 7319

Since: 04-14-10

From: Mos Eisley, Tatooine

Since last post: 9.2 years
Last activity: 9.2 years
Posted on 04-30-10 11:43:57 PM (last edited by system~of~a~down~guitar at 04-30-10 08:59 PM) Link
(chuckling) wow, this is entertaining. I remain curious exactly what he did or why I asume his intensions where to irritate , meh, Im not effected. So on which thread did this little "exploit" occur anyhow?

____________________
The System
Pages: 1 2 3 4 5 6Next newer thread | Next older thread
Jul - NO! GO TO STAR! - Security notice for selected users New poll - New thread - Thread closed


Rusted Logic

Acmlmboard - commit 47be4dc [2021-08-23]
©2000-2022 Acmlm, Xkeeper, Kaito Sinclaire, et al.

31 database queries, 1 query cache hits.
Query execution time: 0.103697 seconds
Script execution time: 0.041243 seconds
Total render time: 0.144940 seconds