IMPORTANT: Possible Password Exposed Risk

[Teddy]

Hello boys and girls,

It has come to recent attention that a seemingly undetected vulnerability where player passwords could has been exposed. We can not say for sure if this was ever used or exploited. This vulnerability existed in the SA:MP RPG scripts and has been resolved thanks to TeaM_MIB and we will begin to process over if the exploit was ever used.

We strongly advise you change your passwords in game, and anywhere else that you use that password. Keep in mind, this is only a security precaution and there is currently no indication that this was ever exploited before. If you have any questions, do not hesitate to ask.

- Teddy

[SugarD]

If you are unable to change your forum password, please contact a Forum Administrator.

[Yenkee]

If you are unable to change your forum password, please contact a Forum Administrator.

Can you list down Forum Administrators ? (cant remember all them)

[SugarD]

Can you list down Forum Administrators ? (cant remember all them)

Traser, Gandalf, Aragorn, Sauron.

Managers and above are sometimes able to help with smaller situations too, but I wouldn't recommend them for this.

[Yenkee]

Traser, Gandalf, Aragorn, Sauron.

Managers and above are sometimes able to help with smaller situations too, but I wouldn't recommend them for this.

Thank you SugarD

i am asking it for password change 

[SugarD]

Thank you SugarD

i am asking it for password change 

You're welcome.

[Servius]

Is this the reason why FBI Forum is on maintenance?

[Emre]

So we had the proclaimed exposure by Columbus in 2011 and now this. Was/is at least any of these true?

[[WS]Jacob]

Is this the reason why FBI Forum is on maintenance?

It could be. But we are also updating boards for agents and restructuring the application boards, so I believe this could be the main reason why as the FBI forums are separate to these.

[Teddy]

Is this the reason why FBI Forum is on maintenance?

Indirectly another issue caused us to look for these kinds of possible exploits, that main core issue led us to find this and why the FBI forums are locked.

So we had the proclaimed exposure by Columbus in 2011 and now this. Was/is at least any of these true?

This is an entirely different case, in Kolumbus's case he  exploited a venerability  in the forums that has since been patched in this case it was a server specific script issue. There is no way to know for sure in both cases if any legitimate information was ever actually acquired.

[Gregersen]

So we had the proclaimed exposure by Columbus in 2011 and now this. Was/is at least any of these true?

Of course this is true.

[BKP]

Oh come on
I don't even know what password to put anymore
I had my name and some numbers, I had my girlfriend's name, had the name of my cat as password

[Devin]

Names/birthdates are so easy to guess..  :conf:

[BKP]

I doubt any person here can guess my real name

[SugarD]

Oh come on
I don't even know what password to put anymore
I had my name and some numbers, I had my girlfriend's name, had the name of my cat as password

That was your mistake. You should NEVER use passwords with information about yourself.


This topic may be helpful to many of you:
http://www.argonathrpg.eu/index.php?topic=78308.0