Alexandria Uptime: 131.00 Days
Total players online: 1



Take the Tour | Site Map

It is currently Sun Aug 18, 2019 5:16 am

All times are UTC - 8 hours




Post new topic Reply to topic  [ 23 posts ]  Go to page Previous  1, 2
Author Message
PostPosted: Sun Jun 09, 2019 1:05 pm 
Offline
Legendary Scripter
Legendary Scripter
User avatar

Joined: 07/10/2004 17:11
Posts: 2370

Damnit. Cheffe hacked my password! Who do I send my Green Dot prepaid credit card number to? ;)

_________________


Top
  ProfileShow poster's scripts in the public script library 
PostPosted: Sun Jun 09, 2019 1:20 pm 
Offline
Developer
Developer
User avatar

Joined: 06/29/2003 11:05
Posts: 2488

Scripty wrote:
Damnit. Cheffe hacked my password! Who do I send my Green Dot prepaid credit card number to? ;)


Your unsalted md5 hash can be found in a rainbow table. :(


Top
  ProfileShow poster's scripts in the public script library 
PostPosted: Fri Jun 14, 2019 10:36 am 
Offline
Script Kiddie
Script Kiddie

Joined: 10/20/2006 14:24
Posts: 5

Groups:
CEO wrote:
The thread and others seem to be mixing password with username

Login Password. If I had meant Username I would have said Username. @josephaj is correct and @scripty is... well, I don't really have a clue what's going on in scripty's head tbh.

Look guys, I'm not interested in arguing the toss about this.

I received typical bulk scam email which suggested a probable breach at EUO and thought that since I had never heard anything about it from site administrators, it would be helpful to at least alert the community to a possible risk. I logged in for the first time in 10 years to do so.

Two other forum users have confirmed receiving the same blackmail scam email that I received - but with their password in the subject line; another remembers EUO being on a list of breached sites a while back and @Cheffe has confirmed that at least in the past, security was *ajem* pretty lax.

That seems reasonably conclusive confirmation to me, so - mission accomplished.

Of course, what anyone decides to do about it (or not) - is up to them...

FE

PS Glad everyone is still enjoying UO. See you all in another 10 years?


Top
  Profile 
PostPosted: Sat Jun 15, 2019 6:15 pm 
Offline
Legendary Scripter
Legendary Scripter
User avatar

Joined: 07/10/2004 17:11
Posts: 2370

I'll tell you what is going on in my head. A guy from 2006 with 2 posts logs in 13 years later and yells PASSWORD BREACH, and a couple people who probly put things they were worried about on a scripting website got nervous. Which isn't me. Then I got hacked by Cheffe. And laughed a little. ;) Now you know.

_________________


Top
  ProfileShow poster's scripts in the public script library 
PostPosted: Sun Jun 16, 2019 8:31 am 
Offline
Legendary Scripter
Legendary Scripter

Joined: 08/11/2005 15:27
Posts: 1146

Feersum Endjinn, https://rationalwiki.org/wiki/Don't_feed_the_Troll

_________________


Top
  ProfileShow poster's scripts in the public script library 
PostPosted: Sun Jun 16, 2019 10:01 am 
Offline
Developer
Developer
User avatar

Joined: 06/29/2003 11:05
Posts: 2488

Feersum Endjinn wrote:
Cheffe has confirmed that at least in the past, security was *ajem* pretty lax.


Yeah, well, we don't store any passwords ourselves. The forum software does. Old software used to store passwords in stupid ways. The mistake was not to discard the old databases. Plus all software should have been kept up to date.

Welcome to the real world, where legacy projects don't get updated.

Believe me, I'm not happy, but I know what the reality of the situation is. Most likely the forum will continue to run as it is. The alternative is to shut everything down. Not pretty, but there it is.

Just as an afterthought: Maybe, people should also stop being idiots who choose 6 letter passwords, all lowercase without special characters. And then reuse that password all over the place.


Top
  ProfileShow poster's scripts in the public script library 
PostPosted: Sun Jun 16, 2019 2:31 pm 
Offline
Legendary Scripter
Legendary Scripter
User avatar

Joined: 07/10/2004 17:11
Posts: 2370

josephActionJackson. Trolling would only occur if I had said something to get a rise out of you. Which is easy. What I did, was post a fact. That if you post something you're willing to lose, on a website where people might hack you (Which is most of them, lets be honest.), then you are dumb. Please feel free to refute that statement of fact at your leisure. I await your well thought out response while you look for the button to change your password.

_________________


Top
  ProfileShow poster's scripts in the public script library 
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 23 posts ]  Go to page Previous  1, 2

All times are UTC - 8 hours


Who is online

Users browsing this forum: No registered users and 11 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group
Hosted by CalWeb Internet Services, Inc.