-
Posts
44,463 -
Joined
-
Last visited
-
Days Won
183
Content Type
Profiles
Forums
Events
Posts posted by DemonGoddess
-
-
For the password reset, are you ensuring there are at least TWELVE characters in the password? When I first did it, I used 9, and then remembered I needed to use 12. Once I did that, it worked just fine. I had to have the validation/password reset resent to me like many of you, as I was one of the approximately 1% of users to where it didn’t work right.
- WillowDarkling and Deadman
- 2
-
Okay everyone, if the password reset doesn’t work, we simply have to wait for the script to finish sending out all the mail. At that point, we can manually resend you that link. It’s not happening for everyone, and has to do with how our email services are parsing the mail to begin with.
- Wilde_Guess and Sessakag
- 2
-
This is the right spot, yes. HoS is for those we’ve found and banned from here.
-
Manta will look into why it’s not working for some of us once the script to send the mails is finished.
-
-
The no alts rule has been in place for many, many years.
-
Well, having searched where I’ve had to delete minors, plagues and trolls; I ruled that out. So, that means that somehow it showed as duplicate accounts (whether by birthday and real name, or whatever tied them together) and the accounts were then merged.
-
Different yahoo email for that account, than what you show for forum
-
Login is not locked. Password reset still is, while we clean things up. If you’re entering your password with any capitals, it won’t work, as the field is case sensitive. None of the letters in your password are in upper case.
-
I’ll have to double check, but I think logins have been disabled at this point in time.
-
Link to the account that still shows, and I can find out what exactly the email address is for that one.
-
Just got home from work, going back shortly. Found and killed the intrusions.
- GeorgeGlass, BronxWench and Wilde_Guess
- 2
- 1
-
-
If you have stories you want deleted from your recommended reading right now, instead of waiting, I can actually do that IN the database.
-
I hope so as well.
-
We are making progress on that end, by the way. So, hopefully, we will have this resolved sooner rather than later.
-
-
Who said I was mad? Sure, I’m peeved about the persistence. But, there are ways to find out how they do they things, which is what I’ve been spending time ferreting out. That’s actually the thing, finding out, HOW exactly they were doing what they did, so we can guard against it. I can tell you it was a brute force hack. I can see that in the logs.
-
I do believe I found the method. Waiting on Manta to confirm.
-
And it’s gone now
-
If the link is left, I’ll go directly in the db and make it go away
-
8 hours ago, Thundercloud said:
I think the worse problem is that even if the site has done nothing wrong it is damn expensive to prove such. Getting the feds to care enough about the site to go after the attacker require a lot of work that is probably is better spent increasing the security of the site. It is of course irritating if the attacker gets away but the risk is great that going the legal way might burn out the AFF crew.
Both Manta and I are working on exactly that. Of course, right now, IRL job is interfering a wee bit, as I’m having to pull extra hours yet again, so that slows me down.
-
Unfortunately, we got a series of SQL injection attacks a couple days ago again, so we are both doing a deep dive. Manta into code, and me into general data. In the meantime, you can still read, forum posts still work, and we will try and get this sorted as quick as we can.
- kagome26isawsome, BronxWench, Sessakag and 2 others
- 4
- 1
-
1 hour ago, Desiderius Price said:
AFAICT, the content here is legal, even if it’s of dubious quality/morals, and would thus be protected by the first amendment. I don’t know if we have any agents amongst us willing to take up the cause.
I guess I’m frustrated, because this hacker appears determined to hijack our website for their own dubious means, and it’s mean/rude and denies us the ability to post/publish/review. While Manta’s doing her level best to overhaul/patch, we’re not Google or Microsoft or Facebook with an army of coders, so I fear this cycle may repeat itself, ad nauseum.
Actually working on finding the what, the why, and how right now, the both of us. Manta is taking a break while I do my part of the deep dive.
New Review Emails
in Archive Tech Support
Posted
The problem I’ve noticed, is even when a user white lists our mail server, we STILL get marked as spam. Not always, but often enough for it to be an ongoing issue.