|
|
Post by Doomguy 2000 on Jan 21, 2023 2:17:31 GMT -5
Pretty self explanatory if you ask me. This does not make them look good in the long run and I don't see or need the reason for passwords to be that long.
|
|
SilverMiner
You're trying to say you like DOS better than me, right?
Posts: 1,342
|
Post by SilverMiner on Jan 21, 2023 3:40:30 GMT -5
They had 35+ some time ago.
I hate when something asks for a password with both capital and small letters, numbers and "at least one special symbol"
It feels like YOU MUST WEAR SEATBELTS
|
|
|
|
Post by ketmar on Jan 21, 2023 4:20:32 GMT -5
that's what you get when dumbfucks trying to do "security".
|
|
xeepeep
Banned
Forever
Posts: 2,338 
|
Post by xeepeep on Jan 21, 2023 13:28:01 GMT -5
Can't believe I'm saying this: Graf Zahl is the only one making sense in that thread. FUCK 2FA and fuck all retarded security bullshit.
I hate microsoft's shenanigans with that shit. Every single time I log in to my email, I have to paste in a login code sent to another address. Thankfully that other address is on based Yandex which doesn't bother you with any of that shit. But I've been using Hotmail/Live Mail/Outlook Mail for over half my life so I'm locked in.
|
|
|
|
Post by chrismoyer on Jan 21, 2023 13:49:57 GMT -5
Their forums are useful, for sure. But I find myself visiting there only when I have to because of things like this. It feels over moderated and convoluted there as far as a smooth experience is concerned.
|
|
jerko
I'm too young to die
Posts: 5
|
Post by jerko on Jan 22, 2023 21:13:00 GMT -5
If they were using just the "20+ character password limit" and not the "Uppercase and lowercase and number in password" crap, it'd be fine.
|
|
|
|
Post by ketmar on Jan 22, 2023 22:34:03 GMT -5
…or simply don't touch anything, and stop pretending that they know even a smallest bit about security…
|
|
SilverMiner
You're trying to say you like DOS better than me, right?
Posts: 1,342
|
Post by SilverMiner on Jan 23, 2023 4:18:17 GMT -5
If they were using just the "20+ character password limit" and not the "Uppercase and lowercase and number in password" crap, it'd be fine. I second that |
|
40oz
diRTbAg
Posts: 6,105
|
Post by 40oz on Jan 23, 2023 13:49:06 GMT -5
It sucks that when one or a few people keep getting their accounts hacked, zdoom forum's administrative response is to inconvenience their entire userbase until this one hacker stops, which doesn't really address the problem or reduce the hacker's necessity to get people's accounts.
It can keep escalating more and more until the zdoom forums interface is so combative that there is little to gain from being a member there.
Can you even do anything with a ZDoom account besides post and read/send private messages under their name?
|
|
xeepeep
Banned
Forever
Posts: 2,338
|
Post by xeepeep on Jan 23, 2023 14:09:35 GMT -5
Yeah you can steal users' banking details that are used to pay for the monthly subscription to the forums. Also their confidential data such as real names and addresses.
|
|
Deleted
Deleted Member
Posts: 0
|
Post by Deleted on Jan 23, 2023 15:34:35 GMT -5
Pretty self explanatory if you ask me. This does not make them look good in the long run and I don't see or need the reason for passwords to be that long.
In cases like this, it's always safe to say "Stunning and brave eunuch autism." Because it is, and obviously it's a mockery of thise retards' idiotic ideas. Would not matter how long their passwords are, if site\forum database protection is utter shit passwords wouldn't help. If someone click some fishy link having 20-symbols password will do fuck all in terms of protection. (t's like put a glitter on condom and say "NOW OUR SEX BE SAFER YAY!!!". Fucking morons, because of people like these I don't regret quitting community. |
|
kvsari
Doomer
I like mapping.
Posts: 326
|
Post by kvsari on Jan 23, 2023 22:43:11 GMT -5
Yeah you can steal users' banking details that are used to pay for the monthly subscription to the forums. Also their confidential data such as real names and addresses. You can't be serious. They ask this info for posting onto a Doom forum? |
|
xeepeep
Banned
Forever
Posts: 2,338
|
Post by xeepeep on Jan 24, 2023 5:49:38 GMT -5
Dead serious. I've had to put my irl address in to register, and they validated that it actually exists.
|
|
nnn✓ork
Doomer
Dr. Noisystein
Posts: 719
|
Post by nnn✓ork on Jan 24, 2023 13:17:17 GMT -5
When you sign up to something with 2FA, make sure to get a 60$ burner phone with Chinese spyware. You can never be too safe.
|
|
Gokuma
You're trying to say you like DOS better than me, right?
Resident DB English Teacher
Posts: 1,208 
|
Post by Gokuma on Jan 25, 2023 18:37:24 GMT -5
They also need your mother's maiden name, a note from your 1st grade teacher, and colonoscopy results. And if you don't log in for ten days you have to reactivate your account with a new password again.
|
|
|
|
Post by dr_st on Jan 26, 2023 12:52:08 GMT -5
I hate when something asks for a password with both capital and small letters, numbers and "at least one special symbol" It feels like YOU MUST WEAR SEATBELTS Well, you really should wear seatbelts. The overly complicated password requirements is more like saying - nah, we don't care if you wear a seatbelt or not, as long as you wear a foam rubber suit. Which is definitely going to protect you when flying through the windshield glass. |
|
kvsari
Doomer
I like mapping.
Posts: 326
|
Post by kvsari on Jan 27, 2023 1:41:42 GMT -5
dr_st This is a very good point. In addition, what is their DB security? It's very easy to screw that up. Encryption is hard to get right and bespoke solutions strongly discouraged. Even security researchers make mistakes setting up cryptographic systems. With the sensitive data ZDoom Forums are asking for, their whole DB encryption needs to be top notch and I get the feeling it isn't.
|
|
