Jump to content

ss2342

Members
  • Posts

    19
  • Joined

  • Last visited

Everything posted by ss2342

  1. [quote name='Locke' timestamp='1309243157' post='2743295'] Can you give an example of the complexity attempted and the complexity allowed? I currently have a mixed cap/uncapped/number/symbol password over 8 characters without issue. [/quote] The form itself tells you what is accepted, anything not on that is denied. The valid characters are: ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyzƒŠŒŽšœžŸÀÁÂÃÄÅÆÇÈÉÊËÌÍÎÏÐÑÒÓÔÕÖØÙÚÛÜÝÞßàáâãäåæçèéêëìíîïðñòóôõöøùúûüýþÿ0123456789-!@#$%^&*()-=_+?/.;'\ I've realised that this is more than just ascii, but a subset of ascii still. As an example of characters that aren't allowed, } and | are two very obvious ones. The idea of saying "screw you" to anyone who wants to use another language for their password is annoying too. Note: This limitation is in the Javascript only. It simply needs to be removed. Using other characters in your password is fine. (This is just to illustrate this isn't a technical problem, just a usability one).
  2. Currently, the password change form is broken, in that it only allows a minuscule subset of data to be used for a password. Not only is it limited to ascii only, but a subset at that. When I attempt to change my password, as I have done, I'm informed that I cannot do so. Being a developer myself, I can't understand the rationale to such a decision, and consider this a security bug. For reference, the forum software on the other hand allows this.
  3. [quote name='Xiphosis' date='29 April 2010 - 06:58 PM' timestamp='1272524318' post='2279634'] The server software being run by Hyperonic is called Apache. Apache is designed to run as a step-down from Root access so that if it is compromised, damage is limited. One of the things you can't do as Apache User [the step down] is edit access logs. Therein Tilton's whole argument is a bowl of !@#$. [/quote] Yes, this skilled person you see here is 100% right. The user apache runs as does NOT have access to write server logs, nor edit them, as that would be a security risk. Instead, Apache uses magical powers to get them written, and no one knows how they've done it yet, but suffice to say, it's not in any way to do with the process having the correct read/write permissions. Only a fool would believe that Apache would have permission to write it's own logs, a FOOL I TELL YOU It was 127.0.0.1 I tell you, no lies.
  4. Darn, the first war where my targets haven't gone down without a fight and we get stop before my warchest is finished. Nice work GOONS.
  5. [quote name='orionsway' date='07 February 2010 - 06:02 PM' timestamp='1265518967' post='2166035'] well thanks john for the opportunities you've given us. Where would we be without your opportunities? But, last I checked, trying to dictate how things shake down isn't an opportunity, its dictating. And last I checked, your not the dictator of our alliance. orionsway nuhf, founder [/quote] [quote] [17:05:27] <Warbuck[ADI]> 1TF and NUHF have the option of agreeing as well, we want 1TF to peace with our other ally they are at war with. [17:05:27] <Auctor[NUHF]> but [17:05:40] <Auctor[NUHF]> any peace with yall has to include yall exitting the war [17:06:02] <Auctor[NUHF]> that'd be our only term as we can't allow you to fight our allies [17:06:27] <Warbuck[ADI]> Am I supposed to let you fight ADI's allies? [17:06:43] <Auctor[NUHF]> if you want peace [/quote] You lol me
  6. Awesome news! I look forward to dishing out ownage with your alliance
  7. *I like it when the red water comes out* /me giggles
  8. [quote name='Xiphosis' date='03 February 2010 - 06:57 PM' timestamp='1265176632' post='2155555'] Surprised you didn't fake some logs for a CB. [/quote] SLOWPOKE!
  9. /me giggles o/ ADI and company It's reading threads like this that make my days lulzy enough to continue playing XD <3 RoK, \m/ etc, you make my day Edit: Ah, I realized it sounds a little sarcastic (Oh what a wonderful word, I have to love it's disputed meanings, lets hope I escape persecution for mis-use here too ) so I just wanted to say, I do genuinely appreciate the lulz everyone gives me. Hope that makes it clearer.
  10. http://www.cybernations.net/nation_drill_d...ation_ID=377443 Resources: Cattle, Rubber Which set and circle do you want to be in? No preference Are there any specific wild card resources that you want? No preference
  11. I think you'll all find this was the unedited log - http://&#33;@#&#036;%*.com/m46fb57cb
  12. Lolwut? I have no idea where you got that information from, but you're mistaken. I'm not gov in ADI. Not even close, in fact, most member's don't even know me. I have something like 4 posts on our forums lol. Also, I would contradict Warbuck if he lied about the logs, which basically means, if someone can change my mind, I would be happy to leave ADI. I'm willing to accept that he might've, but until I have proof, I'm thinking he didn't. Also, if someone convinced you that your alliance leader had doctered logs, would YOU stay with that alliance? It's not a lack of loyalty to an alliance, it's about honor of yourself.
  13. Woot, first and foremost I would like to say how houred I am to have changed from Warbuck's friend who has a clue (unlike a large portion of people here) to a "IT Specialist Consultant" - cbf finding the person/post that said it, but I am thankful for your kind words . http://forums.cybernations.net/index.php?s...p;#entry2072152 - cbf quoting Amazing post, basically what I was thinking of doing, although I think you could've done with less opinion in there. Specifically regarding this line, which I'll paste here, for win factor. It would seem odd to me for Hoo to accept the rest of "B" as conveying his exact words, while objecting only to a single sentence if that were not the case (ie, the line in question was not Hoo’s but added in later) unless, his (Hoo’s) sole desire was to discredit Warbuck, which again is a possibility, but seems to me a massive waste of time for Hoo at this juncture, so I’ll happily discount that. I think you're forgetting that the same works in Warbuck's case (sorta). If you know Warbuck, you'll realize he's not stupid. At least, not stupid enough to think adding a single line to a log is going to change the victor of a war. So really, we have Warbuck adding it in a way that he thinks would change the victor of a war, or Hoo trying to discredit Warbuck. Sorry if I'm missing something there, but that really does look like the only motive behind someone adding/not adding a log. I'm willing to change my stance, or rather make a new post regarding it if someone can point me in a different direction for motive, keeping in mind that it's not going to be too complex if Warbuck did doctor the logs, because that would imply that he would've been smart enough not to get caught . Also, the main "attack" on Warbuck seems to be how he defended himself against the initaial claims of fake logs. I want you all to consider how you would react. You get informed by someone who you were talking to that the logs you leaked, posted, w/e were wrong. You're tired, it's early morning/late night. For me, the first thing I would do is check, for sure. What's the point in arguing if you're not 100% sure it's not a fault on your end. Alternatively, you could respond with something like "No, I believe that those are the exact logs. I am familiar with the exact words used, and those are them. I suggest that either you are lying about this, or you've been hacked". Forgive me if I'm wrong again, but I really do think that checking would be what I would do here, also, the better thing to do. After checking, and confirming that the logs are how you leaked them, you would be alerted to the fact that your logs differ. There are a few options here. 1. Coldfront, purposely or not, managed to send different an extra "faked" line to another end user. I would personally discount this as not viable, but of course, possible. (Unlike some noobs who seem to think it's not >.>) 2. The logs have somehow been changed at your own end. "Hacked". Once again, I wouldn't think this viable, for the sole reason that people who play CN don't have the skills to do something like that to an average user. Of course, still possible, and more viable than number 1. 3. The other user is lying. This is immediately what I would assume, and would form the rest of the conversation around this basis. Also, it would seem the other user is trying to blame you, and is therefore not going to admit to such. Now for what I would say. I'm pretty sure it would be along the lines of what Warbuck himself said. Mention a possible but un-incriminating idea. I think opening hostilities this early in a conversation is a bad thing. So, something along the lines of being hacked. Of course, I wouldn't consider this option really, as Warbuck did too. He said it was sarcastic, but maybe that's not the right word. More along the lines of just saying it because it's a possibility. After checking with someone who had more knowledge on the matter than himself, Warbuck posted in the pm, which is fair enough. Why wouldn't he if he wasn't sure? So, hacking is somewhat possible, but as you saw, Hoo got hostile at this mention, obviously implying that he thought Warbuck doctored the logs himself. Imagine you're being accused. Are you going to sit there acting like it's still possible you got "hacked" when the other person is being hostile? I sure as hell know I wouldn't, hence a response along the lines of. "Dude, I didn't edit !@#$ in those logs. Unfortunately, theres possible way I can prove it, but all I can think of is that you doctored them youself, in which case, stop being such a &#33;@#&#036;%, and admit it" Of course, this is where Warbuck's and mine strategies differ, but you get the point. tl;dr: Warbucks defense was reasonable. Of course, the only real reason I'm convinced that it wasn't Warbuck, is that humans are stupid. Everyone slips up eventually, and after talking to Warbuck off an on since this thread started, he hasn't said anything I consider suspicious. Therefore, at the moment, I side with him. Feel free to talk to me about such issues in private on IRC - ss23[ADI], and no, I don't keep logs . Unforutantly, I don't close my IRC client either, so they're there, loaded, all the time. Very handy . /me vanishes
  14. I did, hence why I said I thought it wasn't coldfront. And still, saying it's "impossible" is wrong still. AND YOU'RE ALL STILL IDIOTS /me slinks off the forums to bath in the cool night air
  15. Now being labeled as the "IRC Pro" that I am, I would just like to point out, for no reason other than "I'm bored", that the above statement is WRONGCAT. Now, not saying that you all should know everything about IRC, and I'm not claiming that Coldfront "does" log messages, or change them in any way. I'm saying it's possible. There are several modules available to allow Opers to spy on a channel, or even private messages (m_spy and similar). However, there are ways to detect this, google it, and I'm fairly certain that the opers/admins don't log either. Also, I happen to know a few of them (not well, but well enough to know they're amazingly sexy people who wouldn't do such a thing (unless you send them money, come on IRC for details )). Secondly, there's another IRC command called "doraw", which 'could' be a possible reason to an occurance like this, if the irc ops are my idols . Example: Notice -- x9 (x9@n[REMOVED]) did a /sendraw [ to=#Channel message=:Ghosts PRIVMSG #Channel :Yeah, I'm onehell of a badass ] From that client's connection (Ghost), they wouldn't see anything. They have 'no way of knowing' that it has been said. However, everyone else sees him say in #channel, "Yeah, I'm one hell of a badass". You see my point. Yeah so, not that I'm blaming Coldfront, but I do think that people should get their facts straight before making claims such as "It's not possible" >.<. Also, most of you are idiots IMO, not that it means much. Everyone who said "Oh look, OP said the logs were faked, can't believe I trust ADI guy" are also idiots. And the people who posted thinking they could make a difference to this thread. And me, for trying to educate the noob users out there who think they actually have a clue Edit: Also just realised that the person I replied to is also an idiot. That sheet said it "was" possible, and yet he said it's not. *facepalm*
×
×
  • Create New...