[QUOTE=whatisaduck;46896704]I'm not going to argue and I'm not going to try and prove anything, but in terms of account management, the most we could do was change your title, posts, usergroup, or avatar. Couldn't even change your name, let alone view your password.
You're either confused or are trying to mislead others. You guys are welcome to believe him if you want, but it's simply an untrue statement. Do with that what you wish.[/QUOTE]
When will you top making alt accounts!? You never learn!
[QUOTE=whatisaduck;46896704]I'm not going to argue and I'm not going to try and prove anything, but in terms of account management, the most we could do was change your title, posts, usergroup, or avatar. Couldn't even change your name, let alone view your password.
You're either confused or are trying to mislead others. You guys are welcome to believe him if you want, but it's simply an untrue statement. Do with that what you wish.[/QUOTE]
So will Cloud Sixteen be making a public statement about why you intentionally modified SMF so it saved the passwords as plain text?
If not yes I'll trust his word over yours any day.
[QUOTE=darksoul69;46896736]So will Cloud Sixteen be making a public statement about why you intentionally modified SMF so it saved the passwords as plain text?
If not yes I'll trust his word over yours any day.[/QUOTE]
I'm not Conna.
[QUOTE=whatisaduck;46896741]I'm not Conna.[/QUOTE]
But you did imply that you were a moderator which means you were involved with Cloud Sixteen and therefore you could make a statement.
[QUOTE=darksoul69;46896744]But you did imply that you were a moderator which means you were involved with Cloud Sixteen and therefore you could make a statement.[/QUOTE]
I am, but I'm in no position to make a statement about anything other than the fact that we did not have an ability to see passwords. We don't manage the files, database, or anything 'official'. We're just mods man.
[QUOTE=whatisaduck;46896769]I am, but I'm in no position to make a statement about anything other than the fact that we did not have an ability to see passwords. We don't manage the files, database, or anything 'official'. We're just mods man.[/QUOTE]
Okay so you -are- a moderator.
When will Cloud Sixteen be releasing an official statement?
[QUOTE=darksoul69;46896775]Okay so you -are- a moderator.
When will Cloud Sixteen be releasing an official statement?[/QUOTE]
I don't know.
[QUOTE=whatisaduck;46896741]I'm not Conna.[/QUOTE]
[B]You lie![/B]
i'm not conna... i swear...
i mean i am posting through a tor proxy but i swear i am [b]NOT[/b] conna cook!!!
just use nutscript
[B]PSA:[/B] Do NOT use my Black Mesa RP Schema that's in there, it's old, crappy and in no way represents the way i code nowadays. :v:
[QUOTE=Blackfire76;46896489]The passwords are actually unhashed, and also higher-level moderator accounts actually had a tool which allowed them to view another person's password at any given time.[/QUOTE]
did I?
[QUOTE=alexanderk;46896979]did I?[/QUOTE]
if you did not then someone else did.. I mean, how did people keep breaking into the forums so easily?
it makes sense that the passwords were not hashed considering the people who hacked the forums came back the day after
[editline]10th January 2015[/editline]
this post also got removed from the forums
[t]http://i.imgur.com/pLB6c1l.png[/t]
:v:
[QUOTE=czechie :v;46897161]if you did not then someone else did.. I mean, how did people keep breaking into the forums so easily?[/QUOTE]
At least moderators didn't have a button for it
[QUOTE=czechie :v;46897161]if you did not then someone else did.. I mean, how did people keep breaking into the forums so easily?
it makes sense that the passwords were not hashed considering the people who hacked the forums came back the day after
[editline]10th January 2015[/editline]
this post also got removed from the forums
[t]http://i.imgur.com/pLB6c1l.png[/t]
:v:[/QUOTE]
[img]http://i.imgur.com/kbfU4gb.png[/img]
This image was posted by Sants and approved by Kuro in the private sector, that explains why kuro has deleted the thread.
Looks like they actually came to a somewhat mature resolution, considering how much of a mess this was (all the keys being leaked)
I don't know much more than word of mouth about Conna, and that word of mouth has unanimously been bad. After reading through what happened, I feel like what I've heard is mostly, if not all, true.
i am not affiliated with in any way with [url]https://www.youtube.com/user/LyutDev[/url] too :smile:
I'm very curious why he disabled password hashing.
[QUOTE=whatisaduck;46896704]I'm not going to argue and I'm not going to try and prove anything, but in terms of account management, the most we could do was change your title, posts, usergroup, or avatar. Couldn't even change your name, let alone view your password.
You're either confused or are trying to mislead others. You guys are welcome to believe him if you want, but it's simply an untrue statement. Do with that what you wish.[/QUOTE]
You realise this just means [i]you[/i] can't view other people's passwords. If they were stored in plain text, [url=http://conna.org/]at least one person[/url] was able to.
[QUOTE=Flapadar;46897566]I'm very curious why he disabled password hashing.[/QUOTE]
if you're serious, it's to rape other people with the same combo
[QUOTE=Flapadar;46897566]I'm very curious why he disabled password hashing.
You realise this just means [I]you[/I] can't view other people's passwords. If they were stored in plain text, [URL="http://conna.org/"]at least one person[/URL] was able to.[/QUOTE]
I'm curious on what the CloudAuth module actually does.
Not what Conna says it does. What it [I]actually[/I] does.
I've talked to a couple people but I'm not sure if what they said was true or just bullshit.
hacked by ISLAMICSTATE HACKERS
F R E E G A Z A
[highlight](User was permabanned for this post ("Gimmick Account" - Big Dumb American))[/highlight]
[QUOTE=Benevolent;46897220][img]http://i.imgur.com/kbfU4gb.png[/img]
This image was posted by Sants and approved by Kuro in the private sector, that explains why kuro has deleted the thread.[/QUOTE]
i deleted this because he didnt agree with those terms so no stop in the jihad train
[QUOTE=sants1;46899199]i deleted this because he didnt agree with those terms so no stop in the jihad train[/QUOTE]
ALLAH AKBAR
jumbo packets incoming for the infidel western pig
[QUOTE=alexanderk;46897182]At least moderators didn't have a button for it[/QUOTE]
Not you, your superiors.
[editline]11th January 2015[/editline]
I think C16 should just be shutdown forever after this debacle.
They've been exposed to store passwords in plaintext, some people were able to access said passwords, and they have massive holes in their security allowing for the theft of these passwords.
It's just another strike on the massive tally of Conna's failures and dodginess I guess.
if you want an infinite stamina exploit (in lua) for crockwork PM me
:)
kurozael is currently threatening court to random niggas but we all know he just bluffin lmao
kurozael is just a reject
my ignong brothers owned trhis fag
Someone should reverse engineer CloudAuthX and make sure it's safe. The ramifications of machines running this is huge if it's backdoored.
it probably is backdoored
Sorry, you need to Log In to post a reply to this thread.
