login | register | shoutbox

 What happened to the Messenger Plus! forums on msghelp.net?
Shoutbox » MsgHelp Archive » General » Forum & Website » what's up with the forums?

Pages: (2): « First « 1 [ 2 ] Last »
what's up with the forums?
Author: Message:
WDZ
Former Admin
*****

Avatar

Posts: 7106
Reputation: 107
– / Male / Flag
Joined: Mar 2002
RE: what's up with the forums?
quote:
Originally posted by sock
You think wrong, apparently: All the forum admins who registered their nicknames on IRC said they were using two different passwords...
I am 95% sure that Patchou was using the same password. I just compared the password stolen from IRC with the one from the latest pre-hacking forum user backup, and they match. :tongue:
04-07-2004 04:10 AM
Profile PM Web Find Quote Report
Wabz
Elite Member
*****

Avatar
Its Groovy Baby!

Posts: 3459
Reputation: 29
39 / Male / Flag
Joined: Jan 2003
RE: what's up with the forums?
quote:
Originally posted by WDZ
I am 95% sure that Patchou was using the same password. I just compared the password stolen from IRC with the one from the latest pre-hacking forum user backup, and they match.

:dodgy:  We need some more security here then :P  Arent the irc passwords hashed now anyways :P
Mess.be Forum Moderator
Messenger Plus ex-IRC Network Admin
Gimme a Rep!
04-07-2004 12:05 PM
Profile E-Mail PM Web Find Quote Report
Menthix
forum admin
*******

Avatar

Posts: 5537
Reputation: 102
40 / Male / Flag
Joined: Mar 2002
RE: what's up with the forums?
Patchou.com was probally hacked because of the same reason then? Do we know who did it? Do we have prove?
Finish the problem
Menthix.net | Contact Me
04-07-2004 12:07 PM
Profile E-Mail PM Web Find Quote Report
Wabz
Elite Member
*****

Avatar
Its Groovy Baby!

Posts: 3459
Reputation: 29
39 / Male / Flag
Joined: Jan 2003
RE: what's up with the forums?
quote:
Originally posted by MenthiX
Patchou.com was probally hacked because of the same reason then? Do we know who did it? Do we have prove?

Last thing i knew is they'd recovered the logs and Patchou was going to take Legal action dunno if it's been confirmed though
Mess.be Forum Moderator
Messenger Plus ex-IRC Network Admin
Gimme a Rep!
04-07-2004 05:23 PM
Profile E-Mail PM Web Find Quote Report
sock
Elite Member
*****

Avatar
Back in White! (with red stripes)

Posts: 1112
Reputation: 31
39 / Male / Flag
Joined: Nov 2002
Status: Away
RE: what's up with the forums?
quote:
Originally posted by WDZ
I am 95% sure that Patchou was using the same password. I just compared the password stolen from IRC with the one from the latest pre-hacking forum user backup, and they match. :tongue:
wtf. :dodgy: He told DX that he uses different passwords everywhere... :dodgy: And how the hell did you get his IRC password? :dodgy:

Besides, other admin accounts were used as well... Are you saying that the hacker changed their passwords using Patchou's admin rights? :-/ Doesn't myBB log admin activity or something? :-/



quote:
Originally posted by Wabz
Arent the irc passwords hashed now anyways :P
Mind you, if the hacker has access to the services database, he can cause great damage to the server even when the passwords are encrypted (for example, delete the databases and the configuration files, or corrupt them otherwise).

Also, a password's encryption can be cracked in a few days if the password is weak (ie. short and non-complex). Password encryption may help security, but it's far from being completely safe.

When I was running the IRC services, I used a version in which the password encryption was "experimental", so I thought it would be better to keep it disabled (which was the default). I was afraid of data loss bugs that DX warned me about. And since password encryption doesn't make things 100% safe anyway, it seemed okay to do so back then. :undecided:

This post was edited on 04-07-2004 at 09:24 PM by sock.
[Image: patchoulolhaxun7.jpg]
04-07-2004 09:21 PM
Profile E-Mail PM Find Quote Report
MC Inferno
Veteran Member
*****

Avatar
www.mcinferno.co.uk

Posts: 1252
Reputation: 17
35 / Male / Flag
Joined: Jan 2004
RE: what's up with the forums?
I dont think patchou would be too happy with you getting his IRC password. I defo wouldnt :S
I'm a rapper & producer from the UK. If you got two seconds, please take time to listen to my music here :)
04-07-2004 10:11 PM
Profile PM Web Find Quote Report
surfichris
Former Admin
*****

Avatar

Posts: 2365
Reputation: 81
Joined: Mar 2002
RE: what's up with the forums?
quote:
Originally posted by sock
Doesn't myBB log admin activity or something?
Yes but the logs were cleared.
quote:
Originally posted by sock
I was afraid of data loss bugs that DX warned me about. And since password encryption doesn't make things 100% safe anyway, it seemed okay to do so back then.
Hashing makes things alot more secure though, because hashes cannot be reversed back to plain text, only really bruteforced.
04-07-2004 11:24 PM
Profile PM Find Quote Report
Wabz
Elite Member
*****

Avatar
Its Groovy Baby!

Posts: 3459
Reputation: 29
39 / Male / Flag
Joined: Jan 2003
RE: what's up with the forums?
quote:
Originally posted by Chris Boulton
Hashing makes things alot more secure though, because hashes cannot be reversed back to plain text, only really bruteforced.

Yeah hashing only takes a few days though to be broken !!By brute force :P
Mess.be Forum Moderator
Messenger Plus ex-IRC Network Admin
Gimme a Rep!
04-07-2004 11:57 PM
Profile E-Mail PM Web Find Quote Report
Pages: (2): « First « 1 [ 2 ] Last »
« Next Oldest Return to Top Next Newest »


Threaded Mode | Linear Mode
View a Printable Version
Send this Thread to a Friend
Subscribe | Add to Favorites
Rate This Thread:

Forum Jump:

Forum Rules:
You cannot post new threads
You cannot post replies
You cannot post attachments
You can edit your posts 		HTML is Off
myCode is On
Smilies are On
[img] Code is On