PlanetCalypsoForum.com :: Entropia Universe Discussion and Resources
Page 3 of 11 FirstFirst 1 2 3 4 5 6 7 8 9 10 ... LastLast
Results 21 to 30 of 109
  1. #21
    MindArk Official
    Ludvig|MindArk's Avatar
    Joined
    Feb 2006
    Gender | Ingame
    Male | Male
    Location
    Sweden
    Avatar
    Formerly "Foeburner Nighthawk Delta"
    Posts
    15,492
    Blog Entries
    73
    Images
    655
    I have looked into the matter and been told that there is nothing to worry about.
    Community liaison in charge of player-developer communications.
    If you have feedback or questions, please make a thread about it.

    I do not handle support issues and will generally not answer forum private messages.
    This account was made official on June 15th, 2016. Posts from before this date are not official.

  2. #22
    Elite Sub-Zero's Avatar
    Joined
    Aug 2007
    Gender | Ingame
    Male | Male
    Location
    Sweden
    Avatar
    Sub-Zero The Killer
    Society
    Guess Who
    Posts
    2,729
    Images
    79
    Quote Originally Posted by Ludvig|MindArk View Post
    This quote is hidden because you are ignoring this member. Show Quote
    I have looked into the matter and been told that there is nothing to worry about.
    Should one still change one's password to be on the safe side?

  3. #23
    Alpha Jas's Avatar
    Joined
    Nov 2006
    Gender | Ingame
    Male | Male
    Avatar
    Jar Jasis Sismondi
    Society
    Shaolin
    Posts
    605
    Images
    31
    Quote Originally Posted by Ludvig|MindArk View Post
    This quote is hidden because you are ignoring this member. Show Quote
    I have looked into the matter and been told that there is nothing to worry about.
    When Firefox reports a breach, I expect a bit more from the provider that has apparently been breached then "There's nothing to worry about". Some details? What was breached, why and how was it resolved? Credibility and Trust?
    http://www.planetcalypsoforum.com/gallery/files/6/2/2/shaolin_member_signatur_jasis_signatur.jpg

  4. #24
    Elite Bones's Avatar
    Joined
    Sep 2006
    Gender | Ingame
    Male | Male
    Location
    In the Refrigerator, Behind the Mayonnaise, Next to the Ketchup, and to the Left of the Cole Slaw
    Avatar
    Bare BareBones Bones
    Society
    Skillin Villains
    Posts
    2,873
    Images
    88
    Quote Originally Posted by Naverith View Post
    This quote is hidden because you are ignoring this member. Show Quote
    110 grains of lead travelling 800 feet per second, applied to the frontal lobe of the suspect.

    If not allowed, then a #10 boot thrust squarely into the anal sphincter of said suspect. Daily.

    After spending 10 years "married" to my Mother (thanks to a hacker), I have 0% humor for their antics.

    I guess you had to be there.
    You were spoofed into marrying your mother ? awkward
    Great minds discuss ideas. Average minds discuss events. Small minds discuss people.

    Eleanor Roosevelt
    11 October 1884 7 November 1962

  5. #25
    Prowler
    Joined
    Jul 2007
    Gender | Ingame
    Male | Male
    Location
    Western Australia
    Avatar
    PostHistory PostHistory Hax
    Society
    Space Police
    Posts
    1,187
    Images
    81
    Quote Originally Posted by Jas View Post
    This quote is hidden because you are ignoring this member. Show Quote
    When Firefox reports a breach, I expect a bit more from the provider that has apparently been breached then "There's nothing to worry about". Some details? What was breached, why and how was it resolved? Credibility and Trust?
    Yes MA/PCF

    You should be required to disclose when you became aware of the breach, the breach location and also advise that the breach has been fixed... if this isn't done how are we to know when and what passwords / emails have been breached.....

    Not good enough to say what you have said at this point!

    Not happy...
    Player Register: PostHistory PostHistory Hax
    F.O.M.A Shop #3 -=PostHistorys Space Bizaar=-
    Professional In Rebalancing All Trade Economies

  6. #26
    Elite wizz's Avatar
    Joined
    May 2005
    Location
    Brabant
    Avatar
    Wizzina Wizz Pale Moon
    Society
    The Ministry
    Posts
    3,626
    Images
    71
    Quote Originally Posted by Ludvig|MindArk View Post
    This quote is hidden because you are ignoring this member. Show Quote
    I have looked into the matter and been told that there is nothing to worry about.
    "I have looked" ..."and been told"

    So, you looked into it, and somebody else told you to not worry about it.
    Who told you that?
    The toilet lady?

  7. #27
    Elite
    This member has helped support PlanetCalypsoForum in the past via donations.

    Joined
    Feb 2006
    Gender | Ingame
    Male | Male
    Location
    London
    Avatar
    Photonic Edge
    Society
    Shaolin
    Posts
    2,933
    Images
    142
    PCF holds Personally Idenitfiable Information (PII) about it's participants and thus comes under the EU GDPR rules. This is a GDPR breach and should be reported as such. If MA have evidence that tells them that no breach has occurred then they have nothing to worry about, but in the meantime there should be an investigation to understand what has happened here.
    http://www.planetcalypsoforum.com/gallery/files/6/2/2/shaolin_member_signatur_photon_signatur.jpg

  8. #28
    Elite wizz's Avatar
    Joined
    May 2005
    Location
    Brabant
    Avatar
    Wizzina Wizz Pale Moon
    Society
    The Ministry
    Posts
    3,626
    Images
    71
    Quote Originally Posted by Photon View Post
    This quote is hidden because you are ignoring this member. Show Quote
    PCF holds Personally Idenitfiable Information (PII) about it's participants and thus comes under the EU GDPR rules. This is a GDPR breach and should be reported as such. If MA have evidence that tells them that no breach has occurred then they have nothing to worry about, but in the meantime there should be an investigation to understand what has happened here.
    MA does not say no breach has occurred.
    MA says we just should not worry about the breach that DID happen.
    Well, at least, that's what somebody told them, that we should not worry about it.

    So, nothing to see here, move along.

  9. #29
    Site Admin
    711's Avatar
    Joined
    Aug 2006
    Gender | Ingame
    Male | Male
    Location
    EntropiaForum.com
    Posts
    5,091
    Blog Entries
    5
    Images
    393
    This issue is being investigated.

    As explained by others in this thread, user passwords are not actually stored in the forum database (or anywhere else). Thus, no actual passwords were compromised, only the salted hashes of those passwords.

    In any case, as a precaution, it is recommended that all PCF members change their account password as soon as possible, and be sure that it is a unique password not used for any other websites or services (i.e Entropia Universe).

    PCF was moved to a new, more secure server a couple of months ago, so similar attacks are unlikely.

  10. #30
    Old Alpha Detritus's Avatar
    Joined
    Sep 2016
    Avatar
    Detritus the Troll
    Posts
    949
    Images
    23
    Quote Originally Posted by Max Hec View Post
    This quote is hidden because you are ignoring this member. Show Quote
    Passwords kept as salted hashes is the correct and secure way of storing them.

    However over the past decade MD5 is proven to have a number of weaknesses.
    Thankfully most MD5 attacks take time and computational power if everything else is done right.
    Ideally MA/EU upgrades to something more secure like SHA-2 or SHA-3 hash function in the near future.

    WOW what?! I didn't even notice that in the statement. MD5 has been shown to be cryptographically unsuitable for password hashing since the early/mid 90's. It's really shocking to find out they are still using it. For the past 30 years it's only been useful for calculating checksums.

    And no, MD5 attacks don't take any time, you can brute force a 10-char pw on a modern cell phone processor in like 30 mins.

    BTW, SHA is designed for speed, and should never be used for pw hashing. Go with PBKDF2 or bcrypt.


    wtf MA
    Last edited by Detritus; 01-13-2020 at 14:53.

Page 3 of 11 FirstFirst 1 2 3 4 5 6 7 8 9 10 ... LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Follow Planet Calypso on Twitter  Follow Planet Calypso on Facebook