Register - Login
Views: 99377670
 Main - Memberlist - Active users - Calendar - Wiki - IRC Chat - Online users
Ranks - Rules/FAQ - Stats - Latest Posts - Color Chart - Smilies		 04-23-22 09:42:07 PM
Jul - NO! GO TO STAR! - Security notice for selected users New poll - New thread - Thread closed
Pages: 1 2 3 4 5 6 Next newer thread | Next older thread
Orlandu


Holy SwordsMan
Level: 137


Posts: 546/5913
EXP: 30446882
For next: 425973

Since: 01-12-10

From: Las Vegas, NV

Since last post: 4.0 years
Last activity: 198 days
Posted on 04-30-10 08:51:20 PM Link
Originally posted by Milly
Nope, it's been MD5 ever since I switched the database to MySQL (and even before that, it was some weak reversible encryption) I used another reversible encryption for cookie passwords, as well ...

However, there were quite a few ways to get the database/cookie passwords, even in plain text (reading the login info from the reply page, with JavaScript)


(edited)
Ok, it actually was plain text at first But that changed to MD5 somewhere between 1.61 (April 2001) and 1.8 (March 2002), maybe in 1.65 or 1.7 ...


Account hacking and identity theft weren't as big back then. And there weren't password sniffing bots checking every site for security loopholes.

____________________
 
Yuuko
10
Level: 8


Posts: 7/10
EXP: 2101
For next: 86

Since: 03-22-10

From: Candoridge

Since last post: 11.7 years
Last activity: 9.3 years
Posted on 04-30-10 08:51:56 PM Link
Originally posted by Xkeeper
The problem with updating the newreply/newthread pages to not use a typed password for logged in users means that you can't really make use of alternate accounts.

Not a big deal, but just one of those things I'd be missing.

I, for one, wholeheartedly agree. It's nice to post while logged out too if you need too >.>

____________________
Xkeeper

Level: 263


Posts: 15857/25343
EXP: 296707808
For next: 2252645

Since: 07-03-07

Pronouns: they/them/????????

Since last post: 8 days
Last activity: 2 days
Posted on 04-30-10 08:53:18 PM Link
Posting while logged out wouldn't change, just while logged in.

____________________
Post 1107/1311 (31 days), online 1 day ago
Posted on 04-30-10 08:53:55 PM Link




#52
Originally posted by Orlandu
Account hacking and identity theft weren't as big back then. And there weren't password sniffing bots checking every site for security loopholes.
And that ... this was at a time when PHP still enabled register_globals by default, not even deprecated And it still took a whole year before the many security holes started causing problems ...


And yeah, I put those autofilled fields in for the same reasons, remember how many of us had alternate accounts back then

____________________
Taryn

Passed away.

Thanks for being a part of us, even if it wasn't always on the best of terms.

1987-2014


Level: 204


Posts: 6952/14742
EXP: 121622250
For next: 1727568

Since: 09-01-09

From: Seattle

Since last post: 10.1 years
Last activity: 9.7 years
Posted on 04-30-10 08:56:23 PM Link
I'm not sure if I ever posted at any AcmlmBoard while logged out. I'm pretty sure that I never have at Jul, though.

Yeah, in the early 2000s there weren't nearly as many bots in general. Web sites usually only needed a username, password, and maybe E-mail to register, not all these CAPTCHAs and such.

____________________
TKB Super Mario Bros.
Bitmap
Banned Forever
Banned for being a dick on the board, in private messages, and then taking that dick-ness off the board and harassing members elsewhere for it. Time to go!

Level: NaN


Posts: 4653/-5501
EXP: NaN
For next: 0

Since: 04-19-09

From: Cataula Georgia

Since last post: 9.9 years
Last activity: 9.9 years
Posted on 04-30-10 08:58:38 PM (last edited by Bitmap at 04-30-10 06:03 PM) Link

E- Actually, I should think twice about posting that

spoiler below was what I said. But I did not mean this to people who might find the F-word offensive.





____________________
__________________________________


 twitstamp.com

FPzero
9590



Post 8639/9597
Active 5.4 years ago
Posted on 04-30-10 09:20:11 PM Link
Glad to see I wasn't affected. Kind of surprising because while my pass is random, it's probably not as secure as ones I have in other important places like school stuff.

Originally posted by Xkeeper
about 150 accounts registered.

Gotta catch 'em all!

____________________
Orlandu


Holy SwordsMan
Level: 137


Posts: 548/5913
EXP: 30446882
For next: 425973

Since: 01-12-10

From: Las Vegas, NV

Since last post: 4.0 years
Last activity: 198 days
Posted on 04-30-10 09:25:32 PM Link
Originally posted by FirePhoenix
Gotta catch 'em all!


He's missing Mega-Mew with only 150. I never understood why Mewtwo was numbered before Mew...

____________________
 
Lyskar
12210
-The Chaos within trumps the Chaos without-
Level: 192


Posts: 5375/12211
EXP: 99235021
For next: 638550

Since: 07-03-07

From: 52-2-88-7

Since last post: 7.4 years
Last activity: 7.3 years
Posted on 04-30-10 09:26:25 PM Link
Stats
Time/Date
04-30-10 03:26:25 PM
Posts
5375
Days Here
1032
Level
106
Metal_Man88's Post
Nice work trying to steal my intentionally useless password, Mega Mario.

Did I mention how annoying those autofilled fields are when I change my password?

____________________
Don't let an old saying get in the way of a good idea.
Eisnaught - SSQ² - Mobius Roleplay - SSS
FPzero
9590



Post 8641/9597
Active 5.4 years ago
Posted on 04-30-10 09:28:46 PM Link
I never allow autofill password or the use of a master password for security reasons. I've had Arbe hack my smwc account before because it was the same pass as on his board back when I was there. That sure taught me to use different totally random passwords everywhere I go.

____________________
Hiryuu

Level: 206


Posts: 13049/14435
EXP: 127511348
For next: 102031

Since: 07-06-07


Since last post: 11.8 years
Last activity: 11.7 years
Posted on 04-30-10 09:30:07 PM Link
Originally posted by FirePhoenix
I never allow autofill password or the use of a master password for security reasons. I've had Arbe hack my smwc account before because it was the same pass as on his board back when I was there. That sure taught me to use different totally random passwords everywhere I go.


Mine was my Y! mail account. Still got the e-mail he mass-raided.

Oh and my initial YT account. Also downed by him.
Tyty

Level: 165


Posts: 7359/8599
EXP: 58622579
For next: 313102

Since: 07-07-07


Since last post: 9.8 years
Last activity: 9.8 years
Posted on 04-30-10 09:33:00 PM Link
I am so glad I don't use that password anymore. It wasn't very secure anyways. Hell, I use my reallyold one more often than that one.

____________________


<devin> i feel like i have improved someone's childhood
<Bitmap_Dale> Devin you fuck
Gabu

Star Mario
Placeholder Ikachan until :effort: is found
Level: 172


Posts: 2885/9981
EXP: 67920709
For next: 181525

Since: 08-10-09

Pronouns: they/them, she/her
From: Santa Cruisin' USA

Since last post: 47 days
Last activity: 7 days
Posted on 04-30-10 09:34:39 PM Link
Originally posted by FirePhoenix
I never allow autofill password or the use of a master password for security reasons. I've had Arbe hack my smwc account before because it was the same pass as on his board back when I was there. That sure taught me to use different totally random passwords everywhere I go.


Funny how that's easy to say, but hard to do. I have the same password on too many websites (though to be fair, some are slightly modified and it uses letters and numbers, so it's not terrible, but still)

____________________

Dprotp
GIRL'S GOT A PENITENTIARY BODY
Level: 107


Posts: 1836/3147
EXP: 12982215
For next: 109096

Since: 07-04-07

Pronouns: he/him
From: FIRE STATE

Since last post: 1.5 years
Last activity: 96 days
Posted on 04-30-10 09:50:56 PM Link
i still don't understand why he's still going at this

i wonder what he's like in person
Originally posted by Hiryuu
[We know drama.





____________________

Lyskar
12210
-The Chaos within trumps the Chaos without-
Level: 192


Posts: 5382/12211
EXP: 99235021
For next: 638550

Since: 07-03-07

From: 52-2-88-7

Since last post: 7.4 years
Last activity: 7.3 years
Posted on 04-30-10 10:02:22 PM Link
Stats
Time/Date
04-30-10 04:02:22 PM
Posts
5382
Days Here
1032
Level
107
Metal_Man88's Post
I would reckon he has nothing else to do and is bored, so his recreational activity is trying to next thing to try and annoy us.

____________________
Don't let an old saying get in the way of a good idea.
Eisnaught - SSQ² - Mobius Roleplay - SSS
plushifoxed

King Yoshi
creepy-cute

Mood: The current mood of roxiemika at www.imood.com
Level: 119


Posts: 2906/3985
EXP: 18414998
For next: 514293

Since: 08-22-07

Pronouns: it/its or she/her
From: kamihama city

Since last post: 35 days
Last activity: 1 day
Posted on 04-30-10 10:40:13 PM Link
Supakitsune
Originally posted by Gabu
Originally posted by FirePhoenix
I never allow autofill password or the use of a master password for security reasons. I've had Arbe hack my smwc account before because it was the same pass as on his board back when I was there. That sure taught me to use different totally random passwords everywhere I go.
Funny how that's easy to say, but hard to do. I have the same password on too many websites (though to be fair, some are slightly modified and it uses letters and numbers, so it's not terrible, but still)
...I'm guilty of this as well.
I heard about some Firefox plugin that lets you enter a master password and it'll generate random passwords for the sites you go to or something?

____________________

every aspect will be reborn innovatively
Join Jul's Folding@Home team and help the science get done!
Supakitsune's Tumbln' Thoughts - Catch me on Twitter!
Hiryuu

Level: 206


Posts: 13054/14435
EXP: 127511348
For next: 102031

Since: 07-06-07


Since last post: 11.8 years
Last activity: 11.7 years
Posted on 04-30-10 10:42:39 PM Link
Originally posted by Supakitsune
...I heard about some Firefox plugin that lets you enter a master password and it'll generate random passwords for the sites you go to or something?


Not a plug-in. Setting. It's in the Option, under Security. Click the checkbox for it.
plushifoxed

King Yoshi
creepy-cute

Mood: The current mood of roxiemika at www.imood.com
Level: 119


Posts: 2907/3985
EXP: 18414998
For next: 514293

Since: 08-22-07

Pronouns: it/its or she/her
From: kamihama city

Since last post: 35 days
Last activity: 1 day
Posted on 04-30-10 10:56:50 PM Link
Supakitsune
Originally posted by Hiryuu
Originally posted by Supakitsune
...I heard about some Firefox plugin that lets you enter a master password and it'll generate random passwords for the sites you go to or something?
Not a plug-in. Setting. It's in the Option, under Security. Click the checkbox for it.
......................

It was there the WHOLE GODDAMN TIME and I didn't notice...?!

____________________

every aspect will be reborn innovatively
Join Jul's Folding@Home team and help the science get done!
Supakitsune's Tumbln' Thoughts - Catch me on Twitter!
Joe
Common spammer
🍬
Level: 111


Posts: 1339/3392
EXP: 14488519
For next: 379841

Since: 08-02-07

From: Pororoca

Since last post: 3 days
Last activity: 1 hour
Posted on 04-30-10 11:07:27 PM Link
I'm glad my old password was 15 characters long.

____________________
fin
system~of~a~down~guitar

Level: 26


Posts: 16/127
EXP: 94849
For next: 7426

Since: 04-14-10

From: Mos Eisley, Tatooine

Since last post: 9.2 years
Last activity: 9.2 years
Posted on 04-30-10 11:43:57 PM (last edited by system~of~a~down~guitar at 04-30-10 08:59 PM) Link
(chuckling) wow, this is entertaining. I remain curious exactly what he did or why I asume his intensions where to irritate , meh, Im not effected. So on which thread did this little "exploit" occur anyhow?

____________________
The System
Pages: 1 2 3 4 5 6 Next newer thread | Next older thread
Jul - NO! GO TO STAR! - Security notice for selected users New poll - New thread - Thread closed


Rusted Logic
Acmlmboard - commit 47be4dc [2021-08-23]
©2000-2022 Acmlm, Xkeeper, Kaito Sinclaire, et al.

32 database queries, 1 query cache hits.
Query execution time:  0.096920 seconds
Script execution time:  0.040956 seconds
Total render time:  0.137876 seconds


TidyHTML vomit below
line 1 column 1 - Warning: missing <!DOCTYPE> declaration
line 2 column 300 - Warning: unescaped & or unknown entity "&page"
line 119 column 11 - Warning: <form> isn't allowed in <table> elements
line 118 column 10 - Info: <table> previously mentioned
line 120 column 11 - Warning: missing <tr>
line 120 column 119 - Warning: missing </font> before </td>
line 124 column 16 - Warning: plain text isn't allowed in <tr> elements
line 120 column 11 - Info: <tr> previously mentioned
line 125 column 68 - Warning: missing </nobr> before </td>
line 141 column 68 - Warning: missing </nobr> before <tr>
line 147 column 35 - Warning: missing <tr>
line 147 column 50 - Warning: missing </font> before </td>
line 148 column 37 - Warning: unescaped & or unknown entity "&id"
line 147 column 198 - Warning: missing </font> before </table>
line 149 column 35 - Warning: missing <tr>
line 149 column 94 - Warning: unescaped & or unknown entity "&page"
line 149 column 126 - Warning: unescaped & or unknown entity "&page"
line 149 column 158 - Warning: unescaped & or unknown entity "&page"
line 149 column 192 - Warning: unescaped & or unknown entity "&page"
line 149 column 224 - Warning: unescaped & or unknown entity "&page"
line 149 column 50 - Warning: missing </font> before </td>
line 149 column 259 - Warning: missing </font> before </table>
line 156 column 9 - Warning: <div> isn't allowed in <table> elements
line 152 column 17 - Info: <table> previously mentioned
line 158 column 9 - Warning: missing <tr>
line 176 column 13 - Warning: missing <tr>
line 179 column 74 - Warning: <link> isn't allowed in <td> elements
line 179 column 9 - Info: <td> previously mentioned
line 179 column 831 - Warning: missing </font> before <div>
line 179 column 886 - Warning: inserting implicit <font>
line 179 column 886 - Warning: missing </font> before <blockquote>
line 179 column 898 - Warning: inserting implicit <font>
line 179 column 898 - Warning: missing </font> before <hr>
line 179 column 960 - Warning: inserting implicit <font>
line 179 column 960 - Warning: missing </font> before <hr>
line 186 column 1 - Warning: inserting implicit <font>
line 187 column 2314 - Warning: unescaped & or unknown entity "&days"
line 187 column 2323 - Warning: unescaped & or unknown entity "&expp"
line 187 column 2332 - Warning: unescaped & or unknown entity "&expi"
line 187 column 2345 - Warning: unescaped & or unknown entity "&level"
line 187 column 2354 - Warning: unescaped & or unknown entity "&exp"
line 190 column 9 - Warning: <div> isn't allowed in <table> elements
line 152 column 17 - Info: <table> previously mentioned
line 192 column 9 - Warning: missing <tr>
line 210 column 13 - Warning: missing <tr>
line 213 column 74 - Warning: <link> isn't allowed in <td> elements
line 213 column 9 - Info: <td> previously mentioned
line 219 column 9 - Warning: <div> isn't allowed in <table> elements
line 152 column 17 - Info: <table> previously mentioned
line 221 column 9 - Warning: missing <tr>
line 239 column 13 - Warning: missing <tr>
line 242 column 243 - Warning: missing <tr>
line 242 column 491 - Warning: missing <tr>
line 242 column 839 - Warning: unescaped & or unknown entity "&theme"
line 244 column 15 - Warning: <div> isn't allowed in <table> elements
line 152 column 17 - Info: <table> previously mentioned
line 245 column 25 - Warning: missing <tr>
line 246 column 33 - Warning: <style> isn't allowed in <td> elements
line 245 column 25 - Info: <td> previously mentioned
line 258 column 33 - Warning: missing <tr>
line 261 column 99 - Warning: <style> isn't allowed in <td> elements
line 261 column 25 - Info: <td> previously mentioned
line 261 column 1061 - Warning: unescaped & or unknown entity "&m"
line 261 column 1068 - Warning: unescaped & or unknown entity "&e"
line 261 column 1188 - Warning: unescaped & or unknown entity "&e"
line 269 column 9 - Warning: <div> isn't allowed in <table> elements
line 152 column 17 - Info: <table> previously mentioned
line 271 column 9 - Warning: missing <tr>
line 289 column 13 - Warning: missing <tr>
line 297 column 9 - Warning: <div> isn't allowed in <table> elements
line 152 column 17 - Info: <table> previously mentioned
line 299 column 9 - Warning: missing <tr>
line 317 column 13 - Warning: missing <tr>
line 325 column 661 - Warning: missing </label> before <div>
line 325 column 721 - Warning: inserting implicit <label>
line 325 column 727 - Warning: inserting implicit <label>
line 325 column 727 - Warning: missing </label> before <div>
line 325 column 770 - Warning: inserting implicit <label>
line 325 column 770 - Warning: missing </label> before <div>
line 325 column 775 - Warning: inserting implicit <label>
line 327 column 1020 - Warning: discarding unexpected </label>
line 330 column 1106 - Warning: missing </a> before <a>
line 332 column 1373 - Warning: discarding unexpected </a>
line 332 column 1377 - Warning: discarding unexpected </a>
line 332 column 1381 - Warning: discarding unexpected </center>
line 335 column 15 - Warning: <div> isn't allowed in <table> elements
line 152 column 17 - Info: <table> previously mentioned
line 336 column 25 - Warning: missing <tr>
line 338 column 33 - Warning: missing </font> before </td>
line 346 column 25 - Warning: plain text isn't allowed in <tr> elements
line 336 column 25 - Info: <tr> previously mentioned
line 348 column 33 - Warning: missing <tr>
line 349 column 47 - Warning: missing </nobr> before </table>
line 351 column 99 - Warning: <link> isn't allowed in <td> elements
line 351 column 25 - Info: <td> previously mentioned
line 356 column 9 - Warning: <div> isn't allowed in <table> elements
line 152 column 17 - Info: <table> previously mentioned
line 358 column 9 - Warning: missing <tr>
line 376 column 13 - Warning: missing <tr>
line 379 column 74 - Warning: <link> isn't allowed in <td> elements
line 379 column 9 - Info: <td> previously mentioned
line 379 column 831 - Warning: missing </font> before <div>
line 379 column 886 - Warning: inserting implicit <font>
line 379 column 886 - Warning: missing </font> before <blockquote>
line 379 column 898 - Warning: inserting implicit <font>
line 379 column 898 - Warning: missing </font> before <hr>
line 379 column 966 - Warning: inserting implicit <font>
line 379 column 966 - Warning: missing </font> before <hr>
line 380 column 1 - Warning: inserting implicit <font>
line 381 column 1649 - Warning: unescaped & or unknown entity "&days"
line 381 column 1658 - Warning: unescaped & or unknown entity "&expp"
line 381 column 1667 - Warning: unescaped & or unknown entity "&expi"
line 381 column 1680 - Warning: unescaped & or unknown entity "&level"
line 381 column 1689 - Warning: unescaped & or unknown entity "&exp"
line 384 column 9 - Warning: <div> isn't allowed in <table> elements
line 152 column 17 - Info: <table> previously mentioned
line 386 column 9 - Warning: missing <tr>
line 404 column 13 - Warning: missing <tr>
line 407 column 74 - Warning: <style> isn't allowed in <td> elements
line 407 column 9 - Info: <td> previously mentioned
line 407 column 1365 - Error: <z> is not recognized!
line 407 column 1365 - Warning: discarding unexpected <z>
line 407 column 1377 - Warning: discarding unexpected </z>
line 409 column 1409 - Error: <z> is not recognized!
line 409 column 1409 - Warning: discarding unexpected <z>
line 409 column 1417 - Warning: discarding unexpected </z>
line 411 column 1433 - Error: <z> is not recognized!
line 411 column 1433 - Warning: discarding unexpected <z>
line 411 column 1445 - Warning: discarding unexpected </z>
line 413 column 1461 - Error: <z> is not recognized!
line 413 column 1461 - Warning: discarding unexpected <z>
line 413 column 1469 - Warning: discarding unexpected </z>
line 417 column 2358 - Warning: discarding unexpected </td>
line 419 column 15 - Warning: <div> isn't allowed in <table> elements
line 152 column 17 - Info: <table> previously mentioned
line 420 column 25 - Warning: missing <tr>
line 422 column 33 - Warning: missing </font> before </td>
line 430 column 25 - Warning: plain text isn't allowed in <tr> elements
line 420 column 25 - Info: <tr> previously mentioned
line 432 column 33 - Warning: missing <tr>
line 433 column 47 - Warning: missing </nobr> before </table>
line 435 column 99 - Warning: <link> isn't allowed in <td> elements
line 435 column 25 - Info: <td> previously mentioned
line 437 column 9 - Warning: <div> isn't allowed in <table> elements
line 152 column 17 - Info: <table> previously mentioned
line 439 column 9 - Warning: missing <tr>
line 457 column 13 - Warning: missing <tr>
line 467 column 9 - Warning: <div> isn't allowed in <table> elements
line 152 column 17 - Info: <table> previously mentioned
line 469 column 9 - Warning: missing <tr>
line 487 column 13 - Warning: missing <tr>
line 490 column 74 - Warning: <link> isn't allowed in <td> elements
line 490 column 9 - Info: <td> previously mentioned
line 492 column 540 - Warning: discarding unexpected </ze>
line 493 column 604 - Warning: discarding unexpected </ze>
line 496 column 9 - Warning: <div> isn't allowed in <table> elements
line 152 column 17 - Info: <table> previously mentioned
line 498 column 9 - Warning: missing <tr>
line 516 column 13 - Warning: missing <tr>
line 519 column 291 - Warning: missing </font> before <body>
line 519 column 320 - Warning: discarding unexpected <body>
line 519 column 354 - Warning: inserting implicit <font>
line 519 column 354 - Warning: missing </font> before <hr>
line 519 column 620 - Warning: inserting implicit <font>
line 519 column 620 - Warning: missing </font> before <hr>
line 520 column 1 - Warning: inserting implicit <font>
line 526 column 9 - Warning: <div> isn't allowed in <table> elements
line 152 column 17 - Info: <table> previously mentioned
line 528 column 9 - Warning: missing <tr>
line 546 column 13 - Warning: missing <tr>
line 549 column 1002 - Warning: missing </font> before <blockquote>
line 553 column 1201 - Warning: inserting implicit <font>
line 553 column 1201 - Warning: missing </font> before <hr>
line 553 column 1264 - Warning: inserting implicit <font>
line 553 column 1264 - Warning: missing </font> before <hr>
line 554 column 1 - Warning: inserting implicit <font>
line 560 column 9 - Warning: <div> isn't allowed in <table> elements
line 152 column 17 - Info: <table> previously mentioned
line 562 column 9 - Warning: missing <tr>
line 580 column 13 - Warning: missing <tr>
line 583 column 74 - Warning: <style> isn't allowed in <td> elements
line 583 column 9 - Info: <td> previously mentioned
line 583 column 1365 - Error: <z> is not recognized!
line 583 column 1365 - Warning: discarding unexpected <z>
line 583 column 1377 - Warning: discarding unexpected </z>
line 585 column 1409 - Error: <z> is not recognized!
Tidy found 529 warnings and 8 errors! Not all warnings/errors were shown.

The alt attribute should be used to give a short description
of an image; longer descriptions should be given with the
longdesc attribute which takes a URL linked to the description.
These measures are needed for people using non-graphical browsers.

For further advice on how to make your pages accessible
see http://www.w3.org/WAI/GL.
You are recommended to use CSS to specify the font and
properties such as its size and color. This will reduce
the size of HTML files and make them easier to maintain
compared with using <FONT> elements.

You are recommended to use CSS to control line wrapping.
Use "white-space: nowrap" to inhibit wrapping in place
of inserting <NOBR>...</NOBR> into the markup.

About HTML Tidy: https://github.com/htacg/tidy-html5
Bug reports and comments: https://github.com/htacg/tidy-html5/issues
Official mailing list: https://lists.w3.org/Archives/Public/public-htacg/
Latest HTML specification: http://dev.w3.org/html5/spec-author-view/
Validate your HTML documents: http://validator.w3.org/nu/
Lobby your company to join the W3C: http://www.w3.org/Consortium

Do you speak a language other than English, or a different variant of
English? Consider helping us to localize HTML Tidy. For details please see
https://github.com/htacg/tidy-html5/blob/master/README/LOCALIZE.md