free

News

collapse

User Info

 
 
Welcome, Guest. Please login or register.
Did you miss your activation email?

* Recent Posts

NOTICE OF PARKING ENFORCEMENT CHANGES by Huntsman
[June 19, 2025, 05:22:50 pm]


Re: Stopping by by Sinister
[June 08, 2025, 01:58:04 pm]


Re: Stopping by by Ehks
[June 04, 2025, 12:25:17 am]


Re: Rest in peace by Stefanrsb
[June 02, 2025, 03:38:02 am]


Re: [SA:MP]House of Sforza | The Elite Power | Estd. 2006 | LS - LV by Stefanrsb
[June 02, 2025, 03:09:22 am]


Re: The Soprano Family | Royal Loyalty by Stefanrsb
[June 02, 2025, 03:00:31 am]


Re: The Gvardia Family || San Fierro's Main Power || Best criminal group of 09/10/11 by Stefanrsb
[June 02, 2025, 02:47:01 am]


Re: BALLAS | In memory of INFERNO 9 and NBA by Stefanrsb
[June 02, 2025, 02:31:29 am]


Re: Count to 1,000,000. by Stefanrsb
[June 02, 2025, 02:15:04 am]


Re: Stopping by by Traser
[June 01, 2025, 10:23:13 pm]


Re: Stopping by by Old Catzu
[May 18, 2025, 07:27:06 pm]


Re: Stopping by by TheRock
[May 18, 2025, 06:44:49 am]

* Who's Online

  • Dot Guests: 422
  • Dot Hidden: 0
  • Dot Users: 0

There aren't any users online.

* Birthday Calender

July 2025
Sun Mon Tue Wed Thu Fri Sat
1 2 3 4 5
6 7 8 9 10 [11] 12
13 14 15 16 17 18 19
20 21 22 23 24 25 26
27 28 29 30 31

Passwords.

Kacper_Gorski · 3628

0 Members and 1 Guest are viewing this topic.

Offline Lincoln.

  • The Gvardia Family
  • Veteran
  • ***
    • Posts: 4346
  • I'm early to the party but my 'rarri is the latest
  • With us since: 18/09/2010
    YearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYears
  • SA:MP: Lincoln Gvardia
Reply #75 on: July 24, 2017, 02:44:15 pm
I'm sorry but players are not to be blamed here. No one advised them to change their passwords after the 2 weeks ago breach. Carbon himself was breached in the process, everyone trusted tge security of server thus no one thought of changing their passwords, this thing should have been thought by the developers not the playere themselves.

Well said.




Offline jovanca

  • Hero
  • ****
    • Posts: 1973
    With us since: 04/03/2013
    YearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYears
  • SA:MP: [GSF]Jovanca
Reply #76 on: July 24, 2017, 02:53:49 pm
I'm sorry but players are not to be blamed here. No one advised them to change their passwords after the 2 weeks ago breach. Carbon himself was breached in the process, everyone trusted tge security of server thus no one thought of changing their passwords, this thing should have been thought by the developers not the playere themselves.

I am pretty sure people were advised to change their passwords.

I AM A BIG BOY I DONT TAKE SHIT FROM ANYONE


Offline Kacper_GorskiTopic starter

  • Regular
  • **
    • Posts: 629
  • Im a good driver, one of the best.
  • With us since: 03/02/2017
    YearsYearsYearsYearsYearsYearsYearsYears
Reply #77 on: July 24, 2017, 03:00:37 pm
I am pretty sure people were advised to change their passwords.
Its common sense to change your own password(s) tbh



Offline RuCa

  • Regular
  • **
    • Posts: 1063
    With us since: 15/11/2009
    YearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYears
  • SA:MP: Frederick Collin
Reply #78 on: July 24, 2017, 03:00:56 pm
Alright.

First of all I am not blaming anyone for not changing the passwords. I just said what we think that caused the breach at this time, but while we are digging we could find other causes. It could be either a SQL injection or any similar attack.
I am follow the principle that you should be informed all the times of what is happening and I will keep doing it.

About the security, we can't make a anti cheat in 1 day. Either a anti cheat wouldn't stop this. The risk should be mitigated but it wasn't, our fault. We are now following it and we will only launch the server once again when we are sure we mitigated it. The risk will not go away and you are aware of it.

Signed,
FredericK


Offline Cyd Parker

  • Just a rascal, goofing around.
  • Regular
  • **
    • Posts: 841
  • "Everything is better with some wine in the belly"
  • With us since: 18/07/2015
    YearsYearsYearsYearsYearsYearsYearsYearsYearsYears
  • SA:MP: Quan_Zheng
  • VC:MP: Albert.O'Reily
  • Discord: Half Sack#6316
Reply #79 on: July 24, 2017, 03:16:08 pm
Alright.

First of all I am not blaming anyone for not changing the passwords. I just said what we think that caused the breach at this time, but while we are digging we could find other causes. It could be either a SQL injection or any similar attack.
I am follow the principle that you should be informed all the times of what is happening and I will keep doing it.

About the security, we can't make a anti cheat in 1 day. Either a anti cheat wouldn't stop this. The risk should be mitigated but it wasn't, our fault. We are now following it and we will only launch the server once again when we are sure we mitigated it. The risk will not go away and you are aware of it.
We understand man, Take your time we will appreciate if you will find the root. Just we are complaining about is, Gaming experience is been ruined.. Take your required time and launch the server back once you are fully sure that server won't be messed up again..
Thanks..

"Ride Hard or Stay Home"


Offline Kacper_GorskiTopic starter

  • Regular
  • **
    • Posts: 629
  • Im a good driver, one of the best.
  • With us since: 03/02/2017
    YearsYearsYearsYearsYearsYearsYearsYears
Reply #80 on: July 24, 2017, 03:29:16 pm
Alright.

First of all I am not blaming anyone for not changing the passwords. I just said what we think that caused the breach at this time, but while we are digging we could find other causes. It could be either a SQL injection or any similar attack.
I am follow the principle that you should be informed all the times of what is happening and I will keep doing it.

About the security, we can't make a anti cheat in 1 day. Either a anti cheat wouldn't stop this. The risk should be mitigated but it wasn't, our fault. We are now following it and we will only launch the server once again when we are sure we mitigated it. The risk will not go away and you are aware of it.
Take your time, we want the server safer than not ;P



Offline Norrage

  • V:MP Manager
  • ***
    • Posts: 2893
    With us since: 29/10/2008
    YearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYears
  • V:MP: [Rstar]Norrage
Reply #81 on: July 24, 2017, 03:36:05 pm
I'm sorry but players are not to be blamed here. No one advised them to change their passwords after the 2 weeks ago breach. Carbon himself was breached in the process, everyone trusted tge security of server thus no one thought of changing their passwords, this thing should have been thought by the developers not the playere themselves.

I suggest everyone to change their passwords.

Common sense really.

Est. 29.10.2008 | 05.11.2015
.


Offline Hidduh

  • Hero
  • ****
    • Posts: 3084
    With us since: 23/07/2009
    YearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYears
Reply #82 on: July 24, 2017, 04:13:38 pm
Isn't passwords encrypted in the DB? :0

They are, and no they're not encrypted with MD5 or SHA1.

I'm sorry but players are not to be blamed here. No one advised them to change their passwords after the 2 weeks ago breach. Carbon himself was breached in the process, everyone trusted tge security of server thus no one thought of changing their passwords, this thing should have been thought by the developers not the playere themselves.

It's called common sense. Why would someone continue to keep using the same password if they know someone else may know it? It's like continuing to use the same key to your safe holding all your valuables even though you know someone stole it right out of your pocket.



Offline Hidduh

  • Hero
  • ****
    • Posts: 3084
    With us since: 23/07/2009
    YearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYears
Reply #83 on: July 24, 2017, 04:15:04 pm
If people will,start asking if they are banned or no ill personally ban them when server comes back.

lmao



Offline Ziad

  • Regular
  • **
    • Posts: 999
  • Bonanno Don
  • With us since: 28/04/2008
    YearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYears
    • Argonath Endless
Reply #84 on: July 24, 2017, 04:16:48 pm
Alright.

First of all I am not blaming anyone for not changing the passwords. I just said what we think that caused the breach at this time, but while we are digging we could find other causes. It could be either a SQL injection or any similar attack.
I am follow the principle that you should be informed all the times of what is happening and I will keep doing it.

About the security, we can't make a anti cheat in 1 day. Either a anti cheat wouldn't stop this. The risk should be mitigated but it wasn't, our fault. We are now following it and we will only launch the server once again when we are sure we mitigated it. The risk will not go away and you are aware of it.
Hey Fred i can help tho! contact me anytime!
They are, and no they're not encrypted with MD5 or SHA1.

It's called common sense. Why would someone continue to keep using the same password if they know someone else may know it? It's like continuing to use the same key to your safe holding all your valuables even though you know someone stole it right out of your pocket.
i though the same why not use SHA256 to hash the passwords :o


Offline Khm

  • Webmaster
  • *****
    • Posts: 5456
    With us since: 29/09/2012
    YearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYears
  • SA:MP: Marshall Kings
  • V:MP: Khm
Reply #85 on: July 24, 2017, 04:20:51 pm
Common sense really.
They are, and no they're not encrypted with MD5 or SHA1.

It's called common sense. Why would someone continue to keep using the same password if they know someone else may know it? It's like continuing to use the same key to your safe holding all your valuables even though you know someone stole it right out of your pocket.
Not everyone has common sense and I'm pretty sure someone said that passwords were safe in some topic.
For now it's being worked in and as FredericK mentioned all players will be forced to change their passwords so it's just a matter of time now.



Offline Mr. Goobii

  • Orc
  • *****
    • Posts: 5348
    With us since: 22/09/2008
    YearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYears
  • SA:MP: [R*]Goobii
  • Discord: Goobii#6360
  • V:MP: [Rstar]Al_Svensson
Reply #86 on: July 24, 2017, 04:25:02 pm
Whirlepool? :-)



Offline Hidduh

  • Hero
  • ****
    • Posts: 3084
    With us since: 23/07/2009
    YearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYearsYears
Reply #87 on: July 24, 2017, 04:34:46 pm
i though the same why not use SHA256 to hash the passwords :o

If you don't use at least SHA256 in 2017 you deserve to be shot in the head. :rolleyes:



Offline Hammer_

  • wish we could go back in time
  • Regular
  • **
    • Posts: 722
    With us since: 08/05/2017
    YearsYearsYearsYearsYearsYearsYearsYears
Reply #88 on: July 24, 2017, 04:36:46 pm
They shouldn't resign if they do Argo will be more dead.



Offline _Sticky_

  • Regular
  • **
    • Posts: 89
    With us since: 12/09/2015
    YearsYearsYearsYearsYearsYearsYearsYearsYearsYears
  • SA:MP: Vincent_Fratto
Reply #89 on: July 24, 2017, 04:38:02 pm
They shouldn't resign if they do Argo will be more dead.
Atleast the Argonathians will be saved.



 


free
SimplePortal 2.3.7 © 2008-2025, SimplePortal