Understanding through Discussion


Welcome! You are not logged in. [ Login ]
EvC Forum active members: 108 (8801 total)
Current session began: 
Page Loaded: 11-17-2017 6:00 PM
318 online now:
dwise1, jar, Modulous (AdminModulous), PaulK, Percy (Admin), Phat (AdminPhat), Tangle (7 members, 311 visitors)
Chatting now:  Chat room empty
Newest Member: jaufre
Post Volume:
Total: 822,584 Year: 27,190/21,208 Month: 1,103/1,714 Week: 311/525 Day: 53/66 Hour: 0/5

Announcements: Reporting debate problems OR discussing moderation actions/inactions


Thread  Details

Email This Thread
Newer Topic | Older Topic
  
1
23Next
Author Topic:   Please Change Your Passwords
Admin
Director
Posts: 12534
From: EvC Forum
Joined: 06-14-2002
Member Rating: 1.8


Message 1 of 43 (566306)
06-24-2010 6:29 AM


The breakin compromised passwords. Please change your passwords.
Replies to this message:
 Message 2 by Huntard, posted 06-24-2010 7:22 AM Admin has acknowledged this reply
 Message 3 by cavediver, posted 06-24-2010 8:10 AM Admin has acknowledged this reply
 Message 4 by Taz, posted 06-24-2010 9:27 AM Admin has responded
 Message 5 by Hyroglyphx, posted 06-24-2010 9:30 AM Admin has responded
 Message 11 by nwr, posted 06-24-2010 1:14 PM Admin has responded
 Message 14 by CosmicChimp, posted 06-24-2010 3:28 PM Admin has responded

    
Huntard
Member
Posts: 2870
From: Limburg, The Netherlands
Joined: 09-02-2008


Message 2 of 43 (566314)
06-24-2010 7:22 AM
Reply to: Message 1 by Admin
06-24-2010 6:29 AM


Thread compromised
The "Racist?" thread is compromised.
This message is a reply to:
 Message 1 by Admin, posted 06-24-2010 6:29 AM Admin has acknowledged this reply

    
cavediver
Member (Idle past 1230 days)
Posts: 4129
From: UK
Joined: 06-16-2005


Message 3 of 43 (566318)
06-24-2010 8:10 AM
Reply to: Message 1 by Admin
06-24-2010 6:29 AM


It is not just username-password association, but also email-password association which is potentially much more concerning...
This message is a reply to:
 Message 1 by Admin, posted 06-24-2010 6:29 AM Admin has acknowledged this reply

  
Taz
Member (Idle past 878 days)
Posts: 5069
From: Zerus
Joined: 07-18-2006


Message 4 of 43 (566329)
06-24-2010 9:27 AM
Reply to: Message 1 by Admin
06-24-2010 6:29 AM


So, are you going to have their asses arrested and sent to federal prison? If they're foreigners, I say gitmo.
This message is a reply to:
 Message 1 by Admin, posted 06-24-2010 6:29 AM Admin has responded

Replies to this message:
 Message 6 by Admin, posted 06-24-2010 9:51 AM Taz has responded

  
Hyroglyphx
Member (Idle past 78 days)
Posts: 5512
From: Austin, TX
Joined: 05-03-2006


Message 5 of 43 (566330)
06-24-2010 9:30 AM
Reply to: Message 1 by Admin
06-24-2010 6:29 AM


strongly urge everyone to change their password. If it is a password used at other sites with the same user name then change it there, also. I greatly regret and apologize for the inconvenience.

Can you provide a more clear reason to do so? What exactly has transpired?


"Men never do evil so completely and cheerfully as when they do it from mistaken conviction." Blaise Pascal
This message is a reply to:
 Message 1 by Admin, posted 06-24-2010 6:29 AM Admin has responded

Replies to this message:
 Message 7 by Admin, posted 06-24-2010 10:02 AM Hyroglyphx has responded

    
Admin
Director
Posts: 12534
From: EvC Forum
Joined: 06-14-2002
Member Rating: 1.8


Message 6 of 43 (566334)
06-24-2010 9:51 AM
Reply to: Message 4 by Taz
06-24-2010 9:27 AM


Taz writes:

So, are you going to have their asses arrested and sent to federal prison? If they're foreigners, I say gitmo.

Yes they're foreigners. Canadians.


--Percy
EvC Forum Director

This message is a reply to:
 Message 4 by Taz, posted 06-24-2010 9:27 AM Taz has responded

Replies to this message:
 Message 8 by slevesque, posted 06-24-2010 11:22 AM Admin has acknowledged this reply
 Message 10 by Taz, posted 06-24-2010 11:46 AM Admin has acknowledged this reply

    
Admin
Director
Posts: 12534
From: EvC Forum
Joined: 06-14-2002
Member Rating: 1.8


(1)
Message 7 of 43 (566339)
06-24-2010 10:02 AM
Reply to: Message 5 by Hyroglyphx
06-24-2010 9:30 AM


There's no way I can know the extent for sure, so I'm encouraging people to be cautious and change their passwords.

What I do know of for sure is that hackers exploited a security hole to find out the passwords of the director accounts, then proceeded to log into these accounts and hack the board. They also hacked one other account that I know of, and I've already changed the password and informed that person.

I've been in contact with the hackers, and they seem a happy bunch intent on demonstrating security holes in obnoxious ways while not causing any permanent damage, but who knows for sure. The security holes they were willing to tell me about, the ones exposing passwords, have already been fixed. I'm sure there are other security holes, and I'll fix them as I learn about them.

The board was last backed up yesterday around 6 PM.


--Percy
EvC Forum Director

This message is a reply to:
 Message 5 by Hyroglyphx, posted 06-24-2010 9:30 AM Hyroglyphx has responded

Replies to this message:
 Message 9 by Hyroglyphx, posted 06-24-2010 11:35 AM Admin has acknowledged this reply
 Message 12 by DrJones*, posted 06-24-2010 3:19 PM Admin has acknowledged this reply

    
slevesque
Member (Idle past 2227 days)
Posts: 1456
Joined: 05-14-2009


Message 8 of 43 (566357)
06-24-2010 11:22 AM
Reply to: Message 6 by Admin
06-24-2010 9:51 AM


Canada FTW
This message is a reply to:
 Message 6 by Admin, posted 06-24-2010 9:51 AM Admin has acknowledged this reply

  
Hyroglyphx
Member (Idle past 78 days)
Posts: 5512
From: Austin, TX
Joined: 05-03-2006


Message 9 of 43 (566360)
06-24-2010 11:35 AM
Reply to: Message 7 by Admin
06-24-2010 10:02 AM


Thanks for clarifying. Hopefully their declared benevolent intentions are true, otherwise we're going to have to call upon a very insane man from a Montreal mental hospital to perform assassinations.


"Men never do evil so completely and cheerfully as when they do it from mistaken conviction." Blaise Pascal
This message is a reply to:
 Message 7 by Admin, posted 06-24-2010 10:02 AM Admin has acknowledged this reply

    
Taz
Member (Idle past 878 days)
Posts: 5069
From: Zerus
Joined: 07-18-2006


Message 10 of 43 (566362)
06-24-2010 11:46 AM
Reply to: Message 6 by Admin
06-24-2010 9:51 AM


I didn't know Canada harbored terrorists. We should invade.
This message is a reply to:
 Message 6 by Admin, posted 06-24-2010 9:51 AM Admin has acknowledged this reply

Replies to this message:
 Message 15 by Dr Adequate, posted 06-24-2010 4:14 PM Taz has not yet responded

  
nwr
Member
Posts: 5539
From: Geneva, Illinois
Joined: 08-08-2005
Member Rating: 4.0


Message 11 of 43 (566381)
06-24-2010 1:14 PM
Reply to: Message 1 by Admin
06-24-2010 6:29 AM


Please post to this thread any messages or threads that appear to be having problems.

I sent a PM on this last night. There's a problem on politicusmaximus.net, thread 20, probably the last post (4th message) (perhaps posted by the hacker(s)).

If I open that thread, my browser (firefox) goes into a loop and I cannot do anything with it other than shut it down.

If I disable javascript, there is no problem. My guess is that some javascript has been put in that post. The other posts in the thread look okay - they are mine and I can edit them to see that the source content looks okay. But I cannot peek at the suspect message, because peek requires javascript to be enabled.

Note: using "noscript" with firefox, and I have temporarily removed politicusmaximus.net from the noscript whitelist to allow access without the looping.


This message is a reply to:
 Message 1 by Admin, posted 06-24-2010 6:29 AM Admin has responded

Replies to this message:
 Message 24 by Admin, posted 06-25-2010 7:11 AM nwr has acknowledged this reply

  
DrJones*
Member
Posts: 1683
From: Edmonton, Alberta, Canada
Joined: 08-19-2004


Message 12 of 43 (566407)
06-24-2010 3:19 PM
Reply to: Message 7 by Admin
06-24-2010 10:02 AM


DrJones* here
They also hacked one other account that I know of, and I've already changed the password and informed that person.

I don't know if i'm the person in question but if I am I haven't received an email yet.

That looks more demanding than I intended, I do realize that you have cleaning up and hole plugging to do.


This message is a reply to:
 Message 7 by Admin, posted 06-24-2010 10:02 AM Admin has acknowledged this reply

  
CosmicChimp
Member
Posts: 305
From: Muenchen Bayern Deutschland
Joined: 06-15-2007


Message 13 of 43 (566408)
06-24-2010 3:25 PM


About a month ago my gmail account got hacked by a Chinese group (probably the triads, haha). Like a dummy I had been using the same password in both places, here and there. I fixed my gmail issue immediately then, but have now fixed my evc password AND changed my listed email address as well as made it unlisted.

Edited by CosmicChimp, : No reason given.


My mind keeps trying to copy itself. Try as I might to stop it, almost everything I do seems to be some sort of a crude attempt at making copies. Gawd, what an egomaniac.
  
CosmicChimp
Member
Posts: 305
From: Muenchen Bayern Deutschland
Joined: 06-15-2007


Message 14 of 43 (566409)
06-24-2010 3:28 PM
Reply to: Message 1 by Admin
06-24-2010 6:29 AM


Who are these 'fine young gentlemen'?
This message is a reply to:
 Message 1 by Admin, posted 06-24-2010 6:29 AM Admin has responded

Replies to this message:
 Message 25 by Admin, posted 06-26-2010 7:49 AM CosmicChimp has not yet responded

  
Dr Adequate
Member
Posts: 15972
Joined: 07-20-2006
Member Rating: 4.4


Message 15 of 43 (566430)
06-24-2010 4:14 PM
Reply to: Message 10 by Taz
06-24-2010 11:46 AM


I didn't know Canada harbored terrorists. We should invade.

I'll get my "NO WAR FOR MAPLE SYRUP" banner ready.


This message is a reply to:
 Message 10 by Taz, posted 06-24-2010 11:46 AM Taz has not yet responded

Replies to this message:
 Message 16 by subbie, posted 06-24-2010 4:46 PM Dr Adequate has not yet responded

  
1
23Next
Newer Topic | Older Topic
Jump to:


Copyright 2001-2015 by EvC Forum, All Rights Reserved

™ Version 4.0 Beta
Innovative software from Qwixotic © 2017