| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 21236 | 2002-06-21 02:09:00 | About this forum and security | Kame Krazee (498) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 55641 | 2002-06-21 02:09:00 | With all registrations you have to ask how secure your information will be. I was not a beta-tester and do not know what went on here but did any of the beta-testers attempt hacking the username and password? If so, did it stand up against the tests made? When getting people to register and choosing a password you should give them guidelines on what their password should be. I always believe that every password should be unique and never the same as another. Although this is easier to remember, it's not good if someone does find out your password. I think a minimal of 8 alphanumeric characters (is it case sensitive?) if so, also upper and lower case and special characters maybe if it's allowed but this is probably if you really do like to be locked tight. I've always been against registering, but I do like what PressF1 does for the community and that's why I registered. I was a bit worried about the information I would have been handing out to them so I decided to anonymise it. Even giving fullname is something to worry about. You'll probably wonder who would want your information anyway but this gives "script kiddies" the opportunity to try out things they have just downloaded. Another thing not related to this topic is can you deregister? |
Kame Krazee (498) | ||
| 55642 | 2002-06-21 02:28:00 | anything is hackable :( but seriously i doubt its would be a problem even if they hack the password. i'd be more worried about the actual server being hacked but thats something for bruce to worry about ;-) deregister? why would you want to leave this heaven? ?:| |
tweak'e (174) | ||
| 55643 | 2002-06-21 02:49:00 | I am thinking that normal users won't be a problem but what about the moderators login? I've worked on a few forums and I know that admins can get more options in their logins and I am thinking this could be the same for this forum as it looks similar to some I have worked on. This would most likely be the primary target. As for deregistering. I created a test name to test out a few things which resulted in something I wasn't hoping for. I would have signed up for a beta tester but I've been too busy and if some people have noticed, I'm not visiting quite as often anymore but I do try to help out as much as I can. As for these cookie sessions they are all unique surely? It may have been a cached page but I logged in as KK and decided I would sign up a test name. I made sure I cleared my internet junk before doing it and signed up and was shown a Welcome KK after registering instead of a Welcome test. I have so many questions about this forum. |
Kame Krazee (498) | ||
| 55644 | 2002-06-21 05:32:00 | Paranoia is a survival trait. But what can you lose in the worst case here? When you made a user called "test", did you logout out as KK then login as test? When you logout, the top lefthand corner should say "Hello, Guest. If you then login as test, it should change to "Welcome, test". Try it. Don't panic, yet. They're not *all* trying to get you. ;-D |
Graham L (2) | ||
| 1 | |||||