Page 2 of 4 FirstFirst 1234 LastLast
Results 21 to 40 of 68

Thread: Warning! Attention All Members!

  1. #21
    Imperial Impotentate brembo's Avatar
    Join Date
    Mar 2001
    Location
    crawlspaces
    Posts
    18,725
    Quote Originally Posted by Philip View Post
    YoS, Ken was simply trying to say that the spam PM could be coming from existing users, simply because they were using a weak password - the exploit targets users whose username and password are the same.

    Yard is being a tool and criticizing Ken's grammar.
    Tao_Jones Cult Member since 2004
    I gave Miss Manners a Dirty Sanchez, and she LIKED it.

  2. #22
    Assistant Admin Ken's Avatar
    Join Date
    Dec 1969
    Location
    Tampa
    Posts
    12,048
    Quote Originally Posted by brembo View Post
    Yard is being a tool and criticizing Ken's grammar.
    It was a quick post made to hopefully keep as many members as possible, from becoming a victim. It's not like I had a lot of time to think about the post as we were trying to stop the SOB's and figure out what was going on. When the specific exploit was discovered, it wasn't just PM's from people that you didn't know, they could be from any account, so that part was an after the fact edit... Not to mention that my PM's were coming in like flies to stink... Multi tasking at it's finest...

  3. #23
    Second Most EVIL YARDofSTUF's Avatar
    Join Date
    Nov 2000
    Location
    USA
    Posts
    69,983
    Quote Originally Posted by brembo View Post
    Yard is being a tool and criticizing Ken's grammar.
    Ken wanted it kept at the top, I was just helping

  4. #24
    Banned
    Join Date
    Sep 2006
    Location
    IL
    Posts
    4,059
    Who is stupid enough to have their name/pw the same?

    so it's not really anyting on SG side, just some users being stupid and someone using a script to take advantage of it.

  5. #25
    Revenant 9mmprincess's Avatar
    Join Date
    Nov 2003
    Location
    out where the lions roar
    Posts
    1,756
    yeah I got a pm with porn spam from "raromoney"....
    There is security in fearlessness.

  6. #26
    Second Most EVIL YARDofSTUF's Avatar
    Join Date
    Nov 2000
    Location
    USA
    Posts
    69,983
    Quote Originally Posted by Comtrad View Post
    Who is stupid enough to have their name/pw the same?

    so it's not really anyting on SG side, just some users being stupid and someone using a script to take advantage of it.
    Could also be old spam accounts.

  7. #27
    Ohh Hell yeah.. Sava700's Avatar
    Join Date
    Feb 2002
    Location
    Somewhere
    Posts
    24,052
    Good warning.. bumped.

  8. #28
    R.I.P. 2013-11-22 blebs's Avatar
    Join Date
    Dec 2000
    Location
    North Canton, Ohio
    Posts
    12,819
    Philip or Ken can one of you send the IP address or addresses for this exploit by PM so I can ban it at the heart forum before it starts on us too please?
    Success is a lousy teacher. It seduces people into thinking they can't lose. -Bill Gates

  9. #29
    Administrator Philip's Avatar
    Join Date
    May 1999
    Location
    Jacksonville, Florida, United States
    Posts
    10,343
    Blog Entries
    6
    Quote Originally Posted by Comtrad View Post
    Who is stupid enough to have their name/pw the same?

    so it's not really anyting on SG side, just some users being stupid and someone using a script to take advantage of it.
    To answer that question...
    I've identified 895 accounts (711 of which with 0 posts) in the SG user database that have their names set for their password.

    It is still our problem, since those can be used to spam the forums/PMs to no end unless addressed.

  10. #30
    Junior Member MadDoctor's Avatar
    Join Date
    Apr 2001
    Location
    Looks dark
    Posts
    0
    Quote Originally Posted by Philip View Post
    To answer that question...
    I've identified 895 in the SG user database that have their names set for their password.
    894 now. I fixed mine.






    People will forget what you said... and people will forget what you did... but people will never forget how you made them feel.

  11. #31
    Administrator Philip's Avatar
    Join Date
    May 1999
    Location
    Jacksonville, Florida, United States
    Posts
    10,343
    Blog Entries
    6
    In addition to those 895, there were another 600 with very weak passwords, i.e. 123, 1234, password, qwerty, etc.

    All those 1500+ users are in the process of having their passwords reset, and the server is emailing them with a link to reactivate their account and choose a stronger password.

    The moral of all this being, please, use common sense and strong passwords!

  12. #32
    Best In Show Noevo's Avatar
    Join Date
    Feb 2000
    Location
    SD
    Posts
    14,188
    I got no PM's...sad


  13. #33
    Assistant Admin Ken's Avatar
    Join Date
    Dec 1969
    Location
    Tampa
    Posts
    12,048
    Quote Originally Posted by Noevo View Post
    I got no PM's...sad


    Are you ready?









    Wait for it...




















    L

    Note the capital "L"... No respect, even from spambots! LMAO!!!

  14. #34
    SG Enthusiast OSULLY's Avatar
    Join Date
    Nov 2007
    Location
    Catskills NY
    Posts
    1,348
    Too late, I opened mine before I read this.
    ___________________________________________

  15. #35
    Member Red Rose's Avatar
    Join Date
    Mar 2002
    Location
    MI
    Posts
    51
    Yes I got one of those porntube things in a PM and didn't know what to make of it?
    I live in my own little world, but it's OK, they know me here.

  16. #36
    Resident Rodent Randy's Avatar
    Join Date
    Jan 2000
    Location
    British Columbia Canada
    Posts
    12,001
    Quote Originally Posted by 9mmprincess View Post
    yeah I got a pm with porn spam from "raromoney"....

    as did I however I was unable to thank him as my keyboard keys got stuckified.

    I was going to post a link to that thread, but the SG search results for "bullsh|t" were too numerous

    sometimes you have to think outside the box to get inside the box .

  17. #37
    Best In Show Noevo's Avatar
    Join Date
    Feb 2000
    Location
    SD
    Posts
    14,188
    Quote Originally Posted by Ken View Post

    L

    Note the capital "L"... No respect, even from spambots! LMAO!!!
    It's like they can't even see me, or i'm invisible or something right?



  18. #38
    Administrator Philip's Avatar
    Join Date
    May 1999
    Location
    Jacksonville, Florida, United States
    Posts
    10,343
    Blog Entries
    6
    I've just deleted ~1000 spam PMs from the database that were sent this morning using those accounts.

  19. #39
    Advanced Member Ronny's Avatar
    Join Date
    Nov 2000
    Location
    Kannapolis,NC
    Posts
    689
    yeah i got a pm for the porntube site too but i just deleted it.
    ken & phillip, good job on catching this and getting it fixed.

    also greetings from sweetwater,tx today

  20. #40
    Certified SG Addict CableDude's Avatar
    Join Date
    Jun 2001
    Posts
    26,784
    I'll take a pm.

Similar Threads

  1. my cable modem dissconnects all the time?
    By cableguy2k7 in forum General Broadband Forum
    Replies: 9
    Last Post: 08-01-08, 07:30 PM
  2. Cox Cable problem
    By ltwally in forum General Broadband Forum
    Replies: 1
    Last Post: 07-28-08, 01:21 AM
  3. Methods before Members or Members before Methods?
    By complete in forum Programming Forum
    Replies: 3
    Last Post: 04-27-08, 10:16 PM
  4. Attention ALL MEMBERS!!!!!!!!!!!!!!!!!!!!
    By Debbie in forum General Discussion Board
    Replies: 23
    Last Post: 12-15-07, 07:08 PM
  5. new cable modem connection problems?
    By cableguy2k7 in forum General Broadband Forum
    Replies: 18
    Last Post: 07-18-07, 09:26 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •