Account Security

Discussion in 'Announcements' started by Tweaker, Oct 28, 2009.

  1. Tweaker

    Tweaker

    Misfit
    12,389
    1
    0
    It appears several of you have never read <a href="http://forums.sonicretro.org/index.php?showtopic=16581" target="_blank">this topic</a> or got the mass email we sent regarding the incident. Allow me to reiterate:

    Several banned users such as <a href="http://info.sonicretro.org/Tongara" target="_blank" style="background: url(http://info.sonicretro.org/images/5/50/Reticon.png) right no-repeat; padding-right: 20px; border-bottom: 1px dotted #3366BB; color: #3366BB; cursor:pointer; text-decoration:none;" class="wiki">Tongara</a> and <a href="http://info.sonicretro.org/x64" target="_blank" style="background: url(http://info.sonicretro.org/images/5/50/Reticon.png) right no-repeat; padding-right: 20px; border-bottom: 1px dotted #3366BB; color: #3366BB; cursor:pointer; text-decoration:none;" class="wiki">x64</a>—widely associated with spinoff community <a href="http://info.sonicretro.org/PoundStuff" target="_blank" style="background: url(http://info.sonicretro.org/images/5/50/Reticon.png) right no-repeat; padding-right: 20px; border-bottom: 1px dotted #3366BB; color: #3366BB; cursor:pointer; text-decoration:none;" class="wiki">PoundStuff</a>—have had found their IPs and useragents matched to several compromised accounts of users who never got our original mass email regarding a database hijack. Among users who have been found to have had their accounts hijacked include (but are not limited to) Yarharhar, Ashura2k, Blue Cheese, and Perfect Chaos Zero. Each of these users have had their passwords reset and an email sent their way regarding the security of their account.

    <b>THIS HAS NOT STOPPED BECOMING AN ISSUE.</b> If you have not changed your password since we made this initial announcement, your account is <I>still at risk.</I> Several members in the oldbies group in particular have already had their accounts compromised; users with higher-level forum access are far more likely to be subject to abuse, so it's strongly advised that if you have not changed your password as of the database compromise that you do so immediately. If you changed your passwords as of our previous mass email, your account is still safe.

    Examples of the negative consequences of such account hijacks can be seen in <a href="http://www.poundstuff.net/forums/index.php?showtopic=16506" target="_blank">this forum topic.</a>

    Please bear with us as we try and keep this apparent breach in account security as painless as possible.
     
  2. Glisp

    Glisp

    That one weird guy that does stuff. Member
    1,278
    0
    16
    Bloomington, IN
    None at the moment I'm afraid.
    Has my account been breached Tweaker? I was planning on changing my password anyway. I don't think I got your mass email though.

    edit: Doesn't matter now. My password is changed to a much more complex password.

    Edit2: Ouch I think I was close to having a seizure trying to look at x64's page. Those vandal pages hurt.
     
  3. I really should change my password in that case, why I didn't before I don't know. =\
     
  4. Xkeeper

    Xkeeper

    i run the cutting room floor Researcher
    1,491
    5
    18
    the bone zone
    current-project-fart
    <a href="http://www.goodpassword.com/" target="_blank">http://www.goodpassword.com/</a>

    Go here and make yourself a new 12-16 (or more) character password, write it down or put it in a text file somewhere, and change your password to it.

    Doing this for every site you visit and keeping a list only you can access will greatly help you.
     
  5. Tweaker

    Tweaker

    Misfit
    12,389
    1
    0
    Also, I may as well put this out there—if you find it funny, appropriate, or otherwise a positive course of action to support these complete and utter pricks in their little escapades against Sonic Retro like a certain <a href="http://xkeeper.sonicretro.org/x/bs.html#entry330786" target="_blank">choice</a> <a href="http://xkeeper.sonicretro.org/x/bs.html#entry330794" target="_blank">few</a> members of this forum seem to think, then I suggest you let us know right up front so we can boot you out right now. I am so, so tired of seeing fake-assed double agent fucks swarm their slimy little necks throughout these communities with the sole purpose of starting up drama and trouble, and we will not hesitate to take you out at a moment's notice if it happens again from this point forward.

    Normally I don't give a shit what people do outside of this forum, but this is where the line is drawn. If you actively encourage or do anything short of condemn this kind of ridiculous, detrimental conduct, then consider your membership here utterly null and void. This forum has been through enough already, and we're breaking our fucking backs trying to make sure that none of you get wronged by a bunch of complete fucking douchebags like the dipshits at PoundStuff. We don't need our own members trying to start shit against us now. If you don't like it here or you have a problem with the way we run things here, leave—that's the bottom line. If you find yourself incapable of leaving on your own, we will gladly show you the door. We're not going to tolerate this bullshit any more from this point forward.

    Let's keep things classy and get back on track, people. This is a goddamned <I>Sonic the Hedgehog forum.</I> We don't need all of this shit bringing us down.



    (Edit by Xkeeper: The original thread was deleted, links moved to an archive copy instead)
     
  6. Aquaslash

    Aquaslash

    Emerald Dragoon Moderator
    2,818
    0
    16
    Hampton, VA
    The S Factor: Sonia and Silver
    <!--quoteo(post=366824:date=Oct 28 2009, 01:02 AM:name=Tweaker)--><div class='quotetop'>QUOTE (Tweaker @ Oct 28 2009, 01:02 AM) <a href="index.php?act=findpost&pid=366824"><img src="public/style_images/retro/snapback.png"></a></div><div class='quotemain'><!--quotec-->This is a goddamned <I>Sonic the Hedgehog forum.</I><!--QuoteEnd--></div><!--QuoteEEnd-->

    <!--quoteo(post=366824:date=Oct 28 2009, 01:02 AM:name=Tweaker)--><div class='quotetop'>QUOTE (Tweaker @ Oct 28 2009, 01:02 AM) <a href="index.php?act=findpost&pid=366824"><img src="public/style_images/retro/snapback.png"></a></div><div class='quotemain'><!--quotec--><I>Sonic the Hedgehog forum.</I><!--QuoteEnd--></div><!--QuoteEEnd-->


    <!--quoteo(post=366824:date=Oct 28 2009, 01:02 AM:name=Tweaker)--><div class='quotetop'>QUOTE (Tweaker @ Oct 28 2009, 01:02 AM) <a href="index.php?act=findpost&pid=366824"><img src="public/style_images/retro/snapback.png"></a></div><div class='quotemain'><!--quotec--><!--sizeo:7--><span style="font-size:36pt;line-height:100%"><!--/sizeo--><!--coloro:#0000FF--><span style="color:#0000FF"><!--/coloro--> <I><b>Sonic the Hedgehog </b></I> <!--colorc--></span><!--/colorc--><!--sizec--></span><!--/sizec--><!--QuoteEnd--></div><!--QuoteEEnd-->

    I think this part needs emphasis, because the amount of drama that has been in the history of fans of this <b>FICTIONAL ANIMAL CHARACTER</b>, is beyond retarded.
     
  7. Katzu Niku

    Katzu Niku

    Mondo cool Oldbie
    Well said, Tweaker, and nice emphasis, Aquaslash.

    People lose themselves in the drama so deeply that they forget what the hell they are here for. Those who find themselves entrenched in drama should really make the mental journey back to basics and realize that, above all, we are here to enjoy ourselves.
     
  8. The Shad

    The Shad

    ↑ & ↓ & ↻ Oldbie
    3,063
    2
    18
    Now you understand why I've become more or less apathetic to this site :P
     
  9. NiktheGreek

    NiktheGreek

    Grumpy old bastard Oldbie
    1,390
    1
    18
    Writing for the best video game magazine in the world
    Pretty sure I changed mine at the time, but whatever. It's been changed again to prevent a pathetic bunch of <a href="http://en.wikipedia.org/wiki/Nathan_Barley" target="_blank">Nathans</a> wrecking my shit.
     
  10. Jayextee

    Jayextee

    Comic Mischief Member
    3,217
    0
    0
    Kathmandu, Nepal
    I DONE MAKED GAMES.
    For some reason, I've always been able to recall passwords to old videogames I used to play; some of them pretty long.

    I recently changed <I>all</I> my online passwords to these strings of unrelated characters (after running Google searches on them, just to be sure). Seemed like a good way to use a previously useless talent.
     
  11. PsychoSk8r

    PsychoSk8r

    HighKnights Oldbie
    2,580
    0
    0
    Walsall, UK
    30 Day Project: Revisited.A New Release!
    You know, I'm pissed off, I thought Peter if anyone would have more decency.
     
  12. Glisp

    Glisp

    That one weird guy that does stuff. Member
    1,278
    0
    16
    Bloomington, IN
    None at the moment I'm afraid.
    I'm sure we all thought that Tongara knew better.

    Yes, Tweaker and Aquaslash are right. This is a Sonic the Hedgehog forum. The sad part of all of that is that the community's history is filled with all sorts of outrageous drama. I think for some people it was one of the main attractions of the community which is why they joined. That kind of behavior sickens me and I'm sure that admins are sickened by it just as much as I am.

    (this was not an attempt to backseat mod. If it sounds that way my apologies. I'm actually really terrified to post my thoughts on an issue as strong as this but I felt it had to be done.)
     
  13. Skaarg

    Skaarg

    Member
    3,683
    0
    16
    <!--quoteo(post=366824:date=Oct 28 2009, 12:02 AM:name=Tweaker)--><div class='quotetop'>QUOTE (Tweaker @ Oct 28 2009, 12:02 AM) <a href="index.php?act=findpost&pid=366824"><img src="public/style_images/retro/snapback.png"></a></div><div class='quotemain'><!--quotec-->Also, I may as well put this out there—if you find it funny, appropriate, or otherwise a positive course of action to support these complete and utter pricks in their little escapades against Sonic Retro like a certain <a href="http://xkeeper.sonicretro.org/x/bs.html#entry330786" target="_blank">choice</a> <a href="http://xkeeper.sonicretro.org/x/bs.html#entry330794" target="_blank">few</a> members of this forum seem to think, then I suggest you let us know right up front so we can boot you out right now. I am so, so tired of seeing fake-assed double agent fucks swarm their slimy little necks throughout these communities with the sole purpose of starting up drama and trouble, and we will not hesitate to take you out at a moment's notice if it happens again from this point forward.

    Normally I don't give a shit what people do outside of this forum, but this is where the line is drawn. If you actively encourage or do anything short of condemn this kind of ridiculous, detrimental conduct, then consider your membership here utterly null and void. This forum has been through enough already, and we're breaking our fucking backs trying to make sure that none of you get wronged by a bunch of complete fucking douchebags like the dipshits at PoundStuff. We don't need our own members trying to start shit against us now. If you don't like it here or you have a problem with the way we run things here, leave—that's the bottom line. If you find yourself incapable of leaving on your own, we will gladly show you the door. We're not going to tolerate this bullshit any more from this point forward.

    Let's keep things classy and get back on track, people. This is a goddamned <I>Sonic the Hedgehog forum.</I> We don't need all of this shit bringing us down.

    (Edit by Xkeeper: The original thread was deleted, links moved to an archive copy instead)<!--QuoteEnd--></div><!--QuoteEEnd-->
    Seeing as you specifically pointed me out I figure I have the right to comment on this, and if you disagree fuck off then. I DO NOT (READ MY LIPS DUSTIN) agree with the methods that people of #stuff are accessing Retro. I have never exploited this (and believe me there are oportunities), but I don't think it's right for the user that is involved nor do I want my account banned from here. I honestly wish it would stop because not only is it getting old, but it is a problem for members of this site. I honestly had thought people had stopped using other's accounts, but when that thread was created it was obvious that it was not. To point out what I find funny, and what caused me to post what I did on #stuff is that Peter was even willing to spend that much money to just poke fun at a site. I'm the one who just last fucking week saw the Sonic Rivals 2 Test Sample and the reason I bought it was for the sole purpose of dumping it and providing it to the community to see if there would be anything interesting development wise or hacking wise. To be honest if you really fucking wanted an Asian version of that cartridge you could probably ask someone on ASSEMblergames in the Want to Buy forum or any other video game site with a sales area and get it for like $10-20 compared to the $60 or more dollars Peter is spending to destroy it. Don't forget Tweaker you are solely responsible for any and all of this happening because YOU are the one who gave x64 access in the first place. Even if you make the claims about how you felt pressured or threatened you could have changed your password or had another admin do it for you immediately after you left x64's place.

    I've been trying to do my part to keep #stuff people from pissing on Retro people because they want to associate with you Tweaker, and I will make it a point on #stuff's forums that I do not want people accessing Retro if they have been banned or by using other people's accounts anymore. I wish you would help by doing your part and just putting things to rest by banning users that are in the wrong over this stupidity. In the future if you would like to inform me personally if users are breaking your rules I will handle them on #stuff.
     
  14. Tweaker

    Tweaker

    Misfit
    12,389
    1
    0
    <!--quoteo(post=366935:date=Oct 28 2009, 01:03 PM:name=Skaarg)--><div class='quotetop'>QUOTE (Skaarg @ Oct 28 2009, 01:03 PM) <a href="index.php?act=findpost&pid=366935"><img src="public/style_images/retro/snapback.png"></a></div><div class='quotemain'><!--quotec-->Don't forget Tweaker you are solely responsible for any and all of this happening because YOU are the one who gave x64 access in the first place. Even if you make the claims about how you felt pressured or threatened you could have changed your password or had another admin do it for you immediately after you left x64's place.<!--QuoteEnd--></div><!--QuoteEEnd-->
    Yeah... that's absolutely right. Believe the hype that tells you shit like how I so voluntarily and liberally just gave access to the site away without a second thought or any bit of hesitation. Believe everyone that tells you that the website got hacked because of a fucking <I>ice cube.</I> Believe all of that shit, because it must somehow make you feel better about yourself at the end of the day to know that one of your supposed "best friends" is an evil, manipulative, spineless little fucking sociopathic piece of shit who literally has no regret in their lives about the things they do to other people than the fact that their bullshit finally bit them in the ass in a way that they can't recover from. Nothing else—and I mean <I>nothing</I>—can justify you trying to make such a ridiculous conclusion.

    Do you want to know how x64 got access to the website? x64 literally had me on the brink of a nervous fucking breakdown after flying me all the way down (if you say "up," I will fucking ban you <I>right now</I>) to New Jersey, forcing me into situations I didn't fucking like <I>at all</I>, triggering my social anxiety to overwhelming extents to where I wanted nothing more than to get the hell out of there, and fully and admittingly taking advantage of both his physical and mental dominance over to me to gain access to a <I>fucking website</I>, of all things. He signed on to my AIM accounts, he harassed people on my list, he threatened my financial stability, and he had me very fucking scared for the <I>longest fucking time</I> that he had so much of my personal information at his disposal that he could completely and utterly fuck up my life. I gave him the password I did—a fucking <I>fake</I> password that wasn't even my real one—so he would stop using every waking fucking moment trying to goddamn packet sniff it and read through my fucking IRC backlog and <I>everything else</I> just trying to get the goddamned thing and so he wouldn't try and keep me from making my return flight back to Florida so I could get the hell away from his bullshit.

    But throughout this <I>entire fucking ordeal</I>—and god knows how I stayed sane while doing it—I still, still, <I>still</I> fucking kept the safety of this website in mind the entire fucking time. Nobody fucking saw this coming, nobody <I>wanted</I> it to happen, and it certainly isn't <I>my</I> fucking fault. If you seriously have the fucking gall to tell me to my face that this is somehow all <I>my</I> fucking fault that some fat lifeless fucking douchebag troll hacked our website after taking advantage of someone's life, hopes, dreams, and aspirations, then <I>fuck you.</I> Fuck you to the deepest, darkest pits of fucking hell and never fucking come back. I can't <I>believe</I> the utter audacity of you fucking people. You're so goddamned worried about the reputation of your fucking <I>website</I> that you're willing to make others feel like shit and suffer endless amounts of psychological abuse just for the sake of... what, exactly? A fucking <I>laugh?</I> Har har fucking <I>har.</I> It's all so fucking <I>hilarious.</I>

    Friends don't make other friends feel utterly helpless. Friends don't take advantage of other friends. Friends don't fucking call other friends' houses and harass them and their families. Friends don't make other friends' parents lose their jobs. <I>DECENT FUCKING PEOPLE</I> don't do <I>ANY</I> of these fucking things. Only heartless, spineless, lifeless little fucking anti-social twats do this shit, because they literally have nothing better to do with their lives than make others feel horrible just so they can inch one step above killing themselves upon the inevitable realization that nobody will ever, ever like them for who they are—just who they pretend to be. And so they all go day by day deluding themselves into thinking that they're good people; that nothing they could ever do could possibly be wrong; that everything will always go their way and if it doesn't, the world has to fucking stop and instantly start revolving around them and how <I>they</I> feel... except nobody will give two shits because they never stopped to think about the kind of shit <I>they</I> did to everyone else around them.

    So don't you fucking <I>dare</I> come to me and try and tell me this is my fault. And don't you <I>dare</I> even fucking <I>pretend</I>—don't even <I>try</I> to act like you even have the slightest fucking <I>clue</I> like you know what he did, how he made me feel, and like you know the sequence of events that led up to this board's hack. Don't. Fucking. <I>Dare.</I> You know <I>absolutely nothing</I> and you <I>never fucking will.</I>
     
  15. ICEknight

    ICEknight

    Researcher Researcher
    That explains why "Yarharhar" sent me a PM saying "he" had bought that Sonic & Knuckles cartridge.
     
  16. Selbi

    Selbi

    Impaled with Extreme Prejudice Member
    1,482
    0
    0
    Northern Germany
    Sonic ERaZor
    I don't like long posts, so I didn't read the entire topic, meaning I don't know if this has already been asked. Anyway, my question: Is anyone who registered before the 15th June in a risk now? I don't really want to change my password. :/
     
  17. Sabe

    Sabe

    Oldbie
    182
    0
    0
    UK
    <!--quoteo(post=366981:date=Oct 28 2009, 08:17 PM:name=Selbi)--><div class='quotetop'>QUOTE (Selbi @ Oct 28 2009, 08:17 PM) <a href="index.php?act=findpost&pid=366981"><img src="public/style_images/retro/snapback.png"></a></div><div class='quotemain'><!--quotec-->I don't like long posts, so I didn't read the entire topic, meaning I don't know if this has already been asked. Anyway, my question: Is anyone who registered before the 15th June in a risk now? I don't really want to change my password. :/<!--QuoteEnd--></div><!--QuoteEEnd-->

    I do believe it's every account created before July 15th, so yes, it's advisable that you do.
     
  18. NiktheGreek

    NiktheGreek

    Grumpy old bastard Oldbie
    1,390
    1
    18
    Writing for the best video game magazine in the world
    <!--quoteo(post=366920:date=Oct 28 2009, 04:03 PM:name=Glisp)--><div class='quotetop'>QUOTE (Glisp @ Oct 28 2009, 04:03 PM) <a href="index.php?act=findpost&pid=366920"><img src="public/style_images/retro/snapback.png"></a></div><div class='quotemain'><!--quotec-->I'm sure we all thought that Tongara knew better.<!--QuoteEnd--></div><!--QuoteEEnd-->
    Speak for yourself. He's always been a moron.
     
  19. Overlord

    Overlord

    Aros gartref, diogelu'r GIG, achub bywydau Moderator
    17,731
    102
    43
    Berkshire, England
    Learning Cymraeg
    <!--quoteo(post=366981:date=Oct 28 2009, 08:17 PM:name=Selbi)--><div class='quotetop'>QUOTE (Selbi @ Oct 28 2009, 08:17 PM) <a href="index.php?act=findpost&pid=366981"><img src="public/style_images/retro/snapback.png"></a></div><div class='quotemain'><!--quotec-->I don't like long posts, so I didn't read the entire topic, meaning I don't know if this has already been asked. Anyway, my question: Is anyone who registered before the 15th June in a risk now? I don't really want to change my password. :/<!--QuoteEnd--></div><!--QuoteEEnd-->


    I believe the hack date was after that, so yes, change your password. Don't like it? Sorry, but there's nothing that can be done about it.



    For the record, I use a different password for every service I use - something I recommend EVERYONE doing - and it's not guessable either. I changed it anyway, just on principle.
     
  20. PsychoSk8r

    PsychoSk8r

    HighKnights Oldbie
    2,580
    0
    0
    Walsall, UK
    30 Day Project: Revisited.A New Release!
    <!--quoteo(post=366944:date=Oct 28 2009, 05:39 PM:name=Tweaker)--><div class='quotetop'>QUOTE (Tweaker @ Oct 28 2009, 05:39 PM) <a href="index.php?act=findpost&pid=366944"><img src="public/style_images/retro/snapback.png"></a></div><div class='quotemain'><!--quotec-->Friends don't make other friends feel utterly helpless. Friends don't take advantage of other friends. Friends don't fucking call other friends' houses and harass them and their families. Friends don't make other friends' parents lose their jobs. <I>DECENT FUCKING PEOPLE</I> don't do <I>ANY</I> of these fucking things. Only heartless, spineless, lifeless little fucking anti-social twats do this shit, because they literally have nothing better to do with their lives than make others feel horrible just so they can inch one step above killing themselves upon the inevitable realization that nobody will ever, ever like them for who they are—just who they pretend to be.<!--QuoteEnd--></div><!--QuoteEEnd-->
    This right here is the fucking truth.
    I can't stand people like this.