KörangarTheMighty
Scholar
Do it.My choice would be either limit post deletion to something like 2 hours... Any legit need for post deletion could be asked of the mods by using the report post function.
Do it.My choice would be either limit post deletion to something like 2 hours... Any legit need for post deletion could be asked of the mods by using the report post function.
You only need to memorize your email passwords. Note them on a sheet of paper if you have many. I don't even bother with memorizing passwords from sites, the browser does, and if for some reason I lose all the data and I don't remember shit, I can set a new password using the email recovering option. Which is why all the effort needs to go to your email stuff.In theory yes, i should have a different password for everything i use, ideally some 12+ letter strong with symbols and caps and everything.
In practice? Maybe i’m just a retard but i struggle memorizing more then a handful of passwords and every time there was some bs forcing me to come up with new ones i end up forgetting it, necessiting me to have to write it down somewhere.
This is especially true for passwords i barely use.
This all ends up creating a far bigger security concern:the risk of misplacing where i store my password hoard, a far more likely scenario for me then getting hacked. Forcing me to come up with an even worst solution which is what i ended up doin with the codex codes: storing them on my email along with a helpful “codex codes” headline because otherwise i will forget dowh the line which codes access what.
Does this sound secure? Storing all my eggs in one basket like this where if anyone figured out my email they will get access to most of my passwords used for everything? This is why i loathe 2fa so much, it does not help secure my accounts at all, it just busts my balls for 0 gain.
Ooh but just use a password manager! Ok and what if something happens to my device? I’ve had my computer die on me and my hard drive getting wiped, losing every program and file on it. So no i do not trust relying on an external program managing my passwords because if something happens to that program i will be even more fucked then it someone figures out my email password.
It’s great you are able to juggle multiple individual passwords for everything you use, but if i remember the studies on this topic, the overwhelming majority of people are going to be like me unfortunately.
Make 2fa optional , if someone goes around deleting my posts i don’t think it would be that big a loss and i’ve never been one to care about post counts. I‘ll just shrug and make a new account at worst.
Is the administration able to notice when an unusual number of login attempts are made? Or to at least verify that it happened after the fact?The attacker is likely using leaked (email, password) or (username, password) pairs rather than going by the 1000 most common passwords or anything like that.Couldn't the administration/technical staff just check each user's password if it's easily compromised (there exist lists of top common passwords the internet, or something like it - you can calculate hash from them and compare to the one stored in the user database)
You can verify your own passwords using a password manager or Google's password manager for leaked or repeated passwords. But if everyone did that, there'd be nothing to talk about.
Not limited like that, limited the same as post edits can be limited, i.e. how far back you can go when editing posts. E.g. a week, a month, 3 months, etc. Anything else would require custom development and is unlikely.Wouldn't that solve the whole issue? Make it like one post deletion per hour.
Which browsers in 2023 don't have an integrated pass manager / login saving that you all need to store them separately? Firefox has even had a function to generate unique strong passwords for individual logins for years now, which takes all the legwork out of it.
Tough words for a guy who just got hacked by a vatnik.Which browsers in 2023 don't have an integrated pass manager / login saving that you all need to store them separately? Firefox has even had a function to generate unique strong passwords for individual logins for years now, which takes all the legwork out of it.
As a person who once worked tech support, I have a developed loathing of the save password feature in browsers.
That was the cause of 95% of the cases of users who were locking themselves out of accounts, or needing password resets done because they could no longer remember their passwords.
Actual third party password managers seemed to cause fewer issues. I'm not sure if it was because they were less common, if the people who used them were more technologically savvy, or both.
I'm not too worried. I finally updated my Codex password to the new stronger password I use everywhere else.Tough words for a guy who just got hacked by a vatnik.Which browsers in 2023 don't have an integrated pass manager / login saving that you all need to store them separately? Firefox has even had a function to generate unique strong passwords for individual logins for years now, which takes all the legwork out of it.
As a person who once worked tech support, I have a developed loathing of the save password feature in browsers.
That was the cause of 95% of the cases of users who were locking themselves out of accounts, or needing password resets done because they could no longer remember their passwords.
Actual third party password managers seemed to cause fewer issues. I'm not sure if it was because they were less common, if the people who used them were more technologically savvy, or both.
I should be able to edit any of my posts whenever I want (additional info, fixing broken images/links).Same with editing, although there are probably a few more valid reasons to edit long posts. Like if you start a thread and the first post was meant to be updated. Such as the first post of a lets play style thread where the first post was meant to be edited to have future episodes be linked to it. If there was a way to make first posts in threads exempt from any editing time limit, that would cover that case.
I should be able to edit any of Roguey's posts whenever I wantI should be able to edit any of my posts whenever I want (additional info, fixing broken images/links).Same with editing, although there are probably a few more valid reasons to edit long posts. Like if you start a thread and the first post was meant to be updated. Such as the first post of a lets play style thread where the first post was meant to be edited to have future episodes be linked to it. If there was a way to make first posts in threads exempt from any editing time limit, that would cover that case.
CruduxCruo should be able to delete your posts whenever he wants.I should be able to edit any of Roguey's posts whenever I wantI should be able to edit any of my posts whenever I want (additional info, fixing broken images/links).Same with editing, although there are probably a few more valid reasons to edit long posts. Like if you start a thread and the first post was meant to be updated. Such as the first post of a lets play style thread where the first post was meant to be edited to have future episodes be linked to it. If there was a way to make first posts in threads exempt from any editing time limit, that would cover that case.
XF automatically locks you out for a while after a few failed login attempts. Nobody's brute-forcing passwords there unless they're literally like "password" or "12345".Is the administration able to notice when an unusual number of login attempts are made? Or to at least verify that it happened after the fact?
Good thing that Codex is likely the last place I ever used the password I had here.This seems to be confirmation that the only reason this situation was even possible is that some (prolific) Codexers use the same password with the same username on compromised sites.Growing number of exploited user accounts with script kiddies mass-deleting their posts, requiring staff cleanup. We could be at this all day every day with the number of reused exploited logins readily available in online databases that are starting to get exploited now.What is the urgency?
darkpatriot, The Brazilian Slaughter, Konjadunless they're literally like "password" or "12345".