Page 2 of 2 FirstFirst 12
Results 26 to 39 of 39

Thread: *******ing free trade

  1. #26
    Join Date
    Nov 2007
    Location
    46696E6C616E64
    Posts
    3,069
    Mentioned
    44 Post(s)
    Quoted
    302 Post(s)

    Default

    I changed my mains password today, just for security reasons, I haven't changed it for a few years. I have never given it to anyone, but still, its good to be on the safe side.
    There used to be something meaningful here.

  2. #27
    Join Date
    Feb 2009
    Location
    Hungary (GMT + 1)
    Posts
    1,774
    Mentioned
    0 Post(s)
    Quoted
    0 Post(s)

    Default

    When I give my accounts to anyone first I change the password from the original and when I get back it I change it back. I was thinking it's common.
    Not because I don't trust them, but if my account some gets stolen I will know that they weren't the ones.
    Anyway I never ever lost accounts. My computer is clean and I never give out my original pass.

  3. #28
    Join Date
    Feb 2007
    Location
    Colorado, USA
    Posts
    3,716
    Mentioned
    51 Post(s)
    Quoted
    624 Post(s)

    Default

    Quote Originally Posted by Sabzi View Post
    When I give my accounts to anyone first I change the password from the original and when I get back it I change it back. I was thinking it's common.
    Not because I don't trust them, but if my account some gets stolen I will know that they weren't the ones.
    Anyway I never ever lost accounts. My computer is clean and I never give out my original pass.
    I only bot on my botting accounts so I could care less if the whole forum knew them.. if no one would take anything :P

    but yea I'd be doing the same thing if it were an account I played a lot
    The only true authority stems from knowledge, not from position.

    You can contact me via matrix protocol: @grats:grats.win or you can email me at the same domain, any user/email address.

  4. #29
    Join Date
    Dec 2007
    Location
    Williston, ND
    Posts
    3,106
    Mentioned
    0 Post(s)
    Quoted
    3 Post(s)

    Default

    you only have to enter the PIN once per log in....takes like 3 seconds total.
    Proud owner of "Efferator" my totally boted main account!
    "You see, sometimes, science is not a guess" -Xiaobing Zhou (my past physics professor, with heavy Chinese accent)

  5. #30
    Join Date
    Feb 2009
    Location
    Hungary (GMT + 1)
    Posts
    1,774
    Mentioned
    0 Post(s)
    Quoted
    0 Post(s)

    Default

    Quote Originally Posted by grats View Post
    I only bot on my botting accounts so I could care less if the whole forum knew them.. if no one would take anything :P

    but yea I'd be doing the same thing if it were an account I played a lot
    I never ever played legit actually, but I care about my little botted main(s).

  6. #31
    Join Date
    Dec 2006
    Location
    Houston, TX USA
    Posts
    4,791
    Mentioned
    0 Post(s)
    Quoted
    0 Post(s)

    Default

    Quote Originally Posted by grats View Post
    Should I be changing my passwords after I give them to the RS randoms team?
    Yea, but you really shouldn't give an account you are worried about people robbing its password. I.e. your main. Instead worthless slave accounts.

  7. #32
    Join Date
    Jan 2008
    Posts
    223
    Mentioned
    0 Post(s)
    Quoted
    0 Post(s)

    Default

    i nearly experienced the same thing. my pw was changed, however, i was logged in the whole time, and managed to realize it was changed and thus didnt lose anything. someone got a pretty nice hacker thoo.. >_<
    http://i55.tinypic.com/2w5rek0.jpg

    P3rs0nal1ty -- Formerly known as Donkey60000

  8. #33
    Join Date
    Feb 2006
    Location
    Pennsylvania
    Posts
    1,524
    Mentioned
    2 Post(s)
    Quoted
    1 Post(s)

    Default

    Quote Originally Posted by donkey60000 View Post
    i nearly experienced the same thing. my pw was changed, however, i was logged in the whole time, and managed to realize it was changed and thus didnt lose anything. someone got a pretty nice hacker thoo.. >_<
    http://en.wikipedia.org/wiki/Password_cracking

    9/10 an account is stolen due to user negligence.

    edit:
    The link is because I had no idea what you meant by "hacker". You're using the wrong vocabulary.

  9. #34
    Join Date
    Feb 2007
    Location
    Colorado, USA
    Posts
    3,716
    Mentioned
    51 Post(s)
    Quoted
    624 Post(s)

    Default

    Quote Originally Posted by IceFire908 View Post
    Yea, but you really shouldn't give an account you are worried about people robbing its password. I.e. your main. Instead worthless slave accounts.
    Yea that's pretty much all of my accounts.. I do have a main but I'd still let you guys on it.. lol, never get randoms though
    The only true authority stems from knowledge, not from position.

    You can contact me via matrix protocol: @grats:grats.win or you can email me at the same domain, any user/email address.

  10. #35
    Join Date
    May 2007
    Location
    Some where fun.
    Posts
    2,891
    Mentioned
    1 Post(s)
    Quoted
    5 Post(s)

    Default

    lol, I lost 20m + staking today. I didn't really mind though, I had a lot of fun staking it, since I just fluctuated around losing a mill for like two hours, then I said, f it, and put the rest of my money in for one boxing match. That match came down to the wire. We both had around like 5 hp left and he got the hit before I did Oh well.

    On the hacking side, one time some guy hacked me through aim

  11. #36
    Join Date
    Nov 2007
    Location
    46696E6C616E64
    Posts
    3,069
    Mentioned
    44 Post(s)
    Quoted
    302 Post(s)

    Default

    RS accounts can be hacked, the meaning of the word is correct on the subject, as there are forums and other sites, that users register, enter username, password and email address, when a hacker sees a vulnerability in these sites, he gets the database, now some sites store passwords in plain text, others use basic MD5 hash which can be brute forced or searching from online crackers, like www.md5decrypter.co.uk (It has quite a big database).

    After this, usually the hacker tries the same password or variations on the email address that was used to register, 75% of the time the password is the same, now that they have access to the email, they can pretty much steal ("hack") any account that is registered to that email, including: steam, runescape, forums, sites, paypal, etc.

    There is not much you can do about this, just make sure you never use the same password on the accounts/sites you value.

    Protection against website vulnerabilities is important, keeping your forum software up-to-date and looking for possible exploits from time to time to your forum software, and if found, just disable the forum for that time (Or the vulnerable file).

    Most hackers use proxies, so theres no point in getting the IP, but yeah, some skiddies don't know shit about anonymizing themselves.

    You can get everything from the database, heres an example:
    Code:
    	user_email	user_pass_convert	user_passchg	user_password	username	username_clean	user_id
    	postmaster@choicemeds.info	0	1282368414	eba76df3******8addebd3161081d59d	Ameteuncene	ameteuncene	791
    	debovann3@aol.com	0	1282433045	a38d4b1f79459071d943e39******fd6	KillaInc.	killainc.	792
    	havoc-disciple@hotmail.com	0	1282503881	a0a4992bae******ebfb911fe4a92c1	havoc-disciple	havoc-disciple	793
    	mattistookool@me.com	0	1282509011	03e09363c15f9e29******28d4bc9904	deajsa	deajsa	794
    	g.it.u.lh.ooo@gmail.com	0	1290082035	acdb0014a01******941e3179d335911	ridener??m	ridenerm	1080
    	ms130@live.com	0	1288649225	dcfee42fa1811ab22be9******51dd4a	mac_attach	mac_attach	1050
    	stunna_superman@yahoo.com	0	1282275217	516b******6654e478a2584516e1d0b4	young-star	young-star	789
    	mesisca89@yahoo.com	0	1282271513	4a998132e095611f6******185fe38da	Mesisca89	mesisca89	788
    	shannunnery@ymail.com	0	1282041050	33ecb762027025b******706163025f1	Miltown_414-Goo	miltown_414-goo	781
    	kevinhadzic@yahoo.com	0	1282160904	7000a6920e7ff9c0******d5bd1ffce1	shooter-027	shooter-027	783
    	bookworm3655@yahoo.com	0	1282173597	b23088b566431a******23a360a212f1	canusurviveme	canusurviveme	785
    	mesisca89@yahoo.com	0	1282271513	4a998132e******f6e2b6e4185fe38da	Mesisca89	mesisca89	788
    	stunna_superman@yahoo.com	0	1282275217	516bc9f884******78a2584516e1d0b4	young-star	young-star	789
    	mdvann2@aol.com	0	1282354410	e4f831c7dd5eb92950******abb2191f	deathbringer27	deathbringer27	790
    	underarmor79@yahoo.com	0	1282514085	1616b4035******954ea98b880ae27ff	A7X_Soldiers	a7x_soldiers	798
    	allyg@gmail.com	0	1282517907	a854bfb3fb4e7c621f******56dec101	Al_sharpton	al_sharpton	799
    Those were achieved by a blind SQL injection.

    Basic vulnerabilities are SQL/Blind SQL injections and RFI/LFI (Remote File Inclusion/Local File Inclusion).

    Links for information:
    Blind SQL injection
    SQL injection
    RFI
    LFI
    Last edited by Frement; 02-02-2011 at 12:12 PM.
    There used to be something meaningful here.

  12. #37
    Join Date
    Dec 2007
    Location
    Williston, ND
    Posts
    3,106
    Mentioned
    0 Post(s)
    Quoted
    3 Post(s)

    Default

    Quote Originally Posted by Frement View Post
    75% of the time the password is the same
    All I read was "User Error"
    Proud owner of "Efferator" my totally boted main account!
    "You see, sometimes, science is not a guess" -Xiaobing Zhou (my past physics professor, with heavy Chinese accent)

  13. #38
    Join Date
    Nov 2007
    Location
    46696E6C616E64
    Posts
    3,069
    Mentioned
    44 Post(s)
    Quoted
    302 Post(s)

    Default

    Quote Originally Posted by Brain View Post
    Quote Originally Posted by Frement View Post
    75% of the time the password is the same
    All I read was "User Error"
    People don't understand how important it is to select strong passwords, and even if my password would be "thread1", I should at least use "post2" on my email, that way hackers only get one of your accounts, the site/forum account that they hacked the database from, but chances are they are not interested in them, they are seeking combos (list of usernames and passwords) or emails to hack into PayPal or other services. Isolating your email from your other passwords is important and should not be ignored.
    There used to be something meaningful here.

  14. #39
    Join Date
    Dec 2009
    Location
    Newcastle, Australia
    Posts
    888
    Mentioned
    0 Post(s)
    Quoted
    0 Post(s)

    Default

    depends on whether you trust the member or not, you could change it before you give it to them to something else, then when you get it back, change the password back, means you don't need a new password.

    Current Script Project
    Pot of flour gatherer - 95% done

    Can't get Simba to work? Click here for a tutorial

Page 2 of 2 FirstFirst 12

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •