Should be common sense. But there are ALOT of stupid ppl out there.
There are ALOT of new sro related forums starting up (even rev6 has one now). Just giving everyone a warning....
DO NOT MAKE FORUM ACCOUNTS WITH THE SAME LOG IN/PASSWORD YOU USE FOR SILKROAD!!!!! The forum admins can see your password. And I bet alot of you used the same email for SRO as you do when your confirming your new forum accounts. tsk tsk.
Make a secondary email account for bullshit website stuff. Like "sendspamhere@yahoo dot com".
Especially some of these new player made websites. cough*igame'semi'legit*cough
Don't be stupid. Don't get hacked.
this public service announcement is sponsored by SNAPPA. fyc.
Password are encrypted into the database just like any other forum. If you use phpbb3, php-fusion, vbulletin and so many more... We can change the password but we can not retreve the password.
Rev6 should know this better than anyone.
EDIT: I hate people that freak out... igamelegit.com is stamped clean some of the people are from silkroadaddiction.com which is another clean site.
Last edited by Lowis on Sun Dec 28, 2008 6:57 am, edited 1 time in total.
Lowis wrote:Password are encrypted into the database just like any other forum. If you use phpbb3, php-fusion, vbulletin and so many more... We can change the password but we can not retreve the password.
Rev6 should know this better than anyone.
This man speaks the truth. The password is usually encrypted before it even leaves your computer.
Lowis wrote:Password are encrypted into the database just like any other forum. If you use phpbb3, php-fusion, vbulletin and so many more... We can change the password but we can not retreve the password.
Rev6 should know this better than anyone.
This man speaks the truth. The password is usually encrypted before it even leaves your computer.
Lowis wrote:Password are encrypted into the database just like any other forum. If you use phpbb3, php-fusion, vbulletin and so many more... We can change the password but we can not retreve the password.
Rev6 should know this better than anyone.
EDIT: I hate people that freak out... igamelegit.com is stamped clean some of the people are from silkroadaddiction.com which is another clean site.
This is a lie, as soon as you register, all the admins get PM'd with your E-mail / username / pass and they all take turns cleaning out accounts.
The only way they can get your username or password is if it wasn't saved to an actual database. Most forums use (Mysql) Might wanna look it up...
most forum program(s) (PHPBB, PHP-FUSION, vBulletin, Simple Machines) etc... they all use mysql as the database your password is auto encrypted. As i said in my previous post.
Admins can get your email and username. They can also change your password but they can NOT recover your password.
But if you feel so unsecure then you already know what to do....
This topic should be moved to site discussion or locked.
Lowis wrote:Do you have proof to backup your theory?
The only way they can get your username or password is if it wasn't saved to an actual database. Most forums use (Mysql) Might wanna look it up...
most forum program(s) (PHPBB, PHP-FUSION, vBulletin, Simple Machines) etc... they all use mysql as the database your password is auto encrypted. As i said in my previous post.
Admins can get your email and username. They can also change your password but they can NOT recover your password.
But if you feel so unsecure then you already know what to do....
This topic should be moved to site discussion or locked.
lol common sense, my junk email-> junkspot@rediffmail.com this is wat i use on almost every new site i join and depending on how much i get spammd i change it IF i feel the site is safe by safe i mean 1 month of observation for all new sites(even this 1 lol)
btw confed site is safe
Spoiler!
I wouldn't recommend insanity to everyone, but its always worked for me. For me, insanity is super sanity. The normal is psychotic. Normal means lack of imagination, lack of creativity.
back in the older forum versions if someone got control of the database or mysql, they could easily crack your password, because they were encrypted in md5's. now a-days forum passwords are encrypted in md5 with salt (randomly set characters in the md5), which makes it almost impossible to crack. there are also other ways to further encrypt passwords besides salting it though.
[Troy] [Genesis*Nig] Lvl 86 Full Farmed
[Troy] [Arkenstone*Nig] Lvl 74 Pure Int S/S Light/Ice $old Lvl 81 2H Sword $old
Ragnorak wrote:I don't even let firefox save my passwords lol. I always make a new email when signing up for forum...but I don't remember the pw for that email -,-
letting firefox save your passwords is perfectly safe. not only are the cookies encrypted, but they are randomly placed so it's almost impossible to find.
[Troy] [Genesis*Nig] Lvl 86 Full Farmed
[Troy] [Arkenstone*Nig] Lvl 74 Pure Int S/S Light/Ice $old Lvl 81 2H Sword $old
oh but thx for FF thng abt passwrds and cookies i didnt know that
Spoiler!
I wouldn't recommend insanity to everyone, but its always worked for me. For me, insanity is super sanity. The normal is psychotic. Normal means lack of imagination, lack of creativity.
Lowis wrote:Password are encrypted into the database just like any other forum. If you use phpbb3, php-fusion, vbulletin and so many more... We can change the password but we can not retreve the password.
Rev6 should know this better than anyone.
EDIT: I hate people that freak out... igamelegit.com is stamped clean some of the people are from silkroadaddiction.com which is another clean site.
As long as the passwort is stored as an MD5-Hash in the database, you are correct. But there are a few lower quality forum software with store the password as plain text.
GwaR wrote:back in the older forum versions if someone got control of the database or mysql, they could easily crack your password, because they were encrypted in md5's. now a-days forum passwords are encrypted in md5 with salt (randomly set characters in the md5), which makes it almost impossible to crack. there are also other ways to further encrypt passwords besides salting it though.
Unsalted MD5 is only weak for weak passwords. It really all comes down to how secure your password is, but considering how common passwords like '123456' are, it's really no surprise that people get hacked.
GwaR wrote:back in the older forum versions if someone got control of the database or mysql, they could easily crack your password, because they were encrypted in md5's. now a-days forum passwords are encrypted in md5 with salt (randomly set characters in the md5), which makes it almost impossible to crack. there are also other ways to further encrypt passwords besides salting it though.
Unsalted MD5 is only weak for weak passwords. It really all comes down to how secure your password is, but considering how common passwords like '123456' are, it's really no surprise that people get hacked.
FACK!!! Now I gotta change my pw and the combination on my luggage...
uhm, I once hacked a gold bot account. SRO account database is full of ID like "aaaaaa", "aaaaab", etc... and their pass are mostly 123456, 000000, 111111. The one i hacked by lucky is aaaaaa with 123456 password i think
imo people should have 3 passwords. 1 for things that doesnt really matter (forums) 1 for things that are somewhat important (Myspace, E-mail, Facebook) 1 for things that are ultra important (Gamimg accounts)
Of course if you have bank accounts or paypal account or stuff like that online their PW should be unique.
[Epic Beard Man] wrote:You gonna get a Vietnam now mother, and i whipped his butt so fast and so quick, so pretty. I hit him with the Muhammad Ali left, right, left. I did the Ali shuffle!
GwaR wrote:back in the older forum versions if someone got control of the database or mysql, they could easily crack your password, because they were encrypted in md5's. now a-days forum passwords are encrypted in md5 with salt (randomly set characters in the md5), which makes it almost impossible to crack. there are also other ways to further encrypt passwords besides salting it though.
Unsalted MD5 is only weak for weak passwords. It really all comes down to how secure your password is, but considering how common passwords like '123456' are, it's really no surprise that people get hacked.
true
[Troy] [Genesis*Nig] Lvl 86 Full Farmed
[Troy] [Arkenstone*Nig] Lvl 74 Pure Int S/S Light/Ice $old Lvl 81 2H Sword $old
Moving to Aion Online. Goodbye, Silkroad. You won't be missed.
