PLEASE READ: Forum/site password strength

[xavier]

Hello Ogre users,

I've just had to go through and delete a bunch of posts by a particular user who likely had their account compromised; it appeared that a bot had edited a bunch of their posts from the past as well as posted a bunch of recent garbage, plus also changed their account profile information (email address, sig, etc.).

For your sake and the sake of the Ogre site and forums, please make sure you are not using trivial passwords for your Ogre site and forum accounts (for instance, using your username as your password, or using simple dictionary words for passwords).

This sort of attack is easily thwarted with a little bit of diligence on the part of the community, so we thank you in advance for your cooperation!

Xavier

[Trosan]

Any plans for PHPBB 3 ?

[haffax]

Any plans for PHPBB 3 ?

How does this solve the issue?

[SpaceDude]

If, like me, you don't fancy remembering 100 different passwords for different websites you can use something like KeePass ( http://keepass.info/ ) to store all your passwords in a database with 1 master password to unlock it.

[nullsquared]

If, like me, you don't fancy remembering 100 different passwords for different websites you can use something like KeePass ( http://keepass.info/ ) to store all your passwords in a database with 1 master password to unlock it.

Or, you know, just use

[DanielSefton]

I store my passwords in my PDA. Got about 250 of them, all random alphanumeric and at least 10 characters long. Not much chance of anyone guessing mine.

Any plans for PHPBB 3 ?

This really should be considered soon. There are tonnes of security flaws in phpBB2, and bots attack it all the time. phpBB3 is a lot more secure and literally bot-free.

phpBB2 has completely ceased development now. So if an exploit is found, it'll never be fixed.

[syedhs]

If, like me, you don't fancy remembering 100 different passwords for different websites you can use something like KeePass ( http://keepass.info/ ) to store all your passwords in a database with 1 master password to unlock it.

Or, you know, just use

Err in a few days from now, Firefox 3 will be officially released.

[danharibo]

phpBB? pfft We use SMF

[DanielSefton]

phpBB? pfft We use SMF

Eww.

Don't get me wrong, SMF is a powerful piece of forum software. (Especially the modding system.) It just seems a bit too... Basic and unprofessional. But that's my opinion.

I never liked phpBB2 either, but phpBB3 has come on leaps and bounds. It's truly flawless, and the revamped ACP is great to work with.

[nullsquared]

If, like me, you don't fancy remembering 100 different passwords for different websites you can use something like KeePass ( http://keepass.info/ ) to store all your passwords in a database with 1 master password to unlock it.

Or, you know, just use

Err in a few days from now, Firefox 3 will be officially released.

Good point - I wanted to post the icon instead, but didn't find a suitable size, nor did I feel like manually resizing the gigantic vector-generated one I found on the internet. Have you pledged to the official FireFox Download Day on the 17th? I have

[Frenetic]

Have you pledged to the official FireFox Download Day on the 17th? I have

I probably will, even though I use Opera mostly.

One of the main reasons I support Firefox is because it is the anti-IE. As anyone who develops for the Web should know, IE isn't actually software, but an entity forged from pure evil.

[DanielSefton]

One of the main reasons I support Firefox is because it is the anti-IE. As anyone who develops for the Web should know, IE isn't actually software, but an entity forged from pure evil.

You can say that again. IE7 was a massive improvement though. Still not perfect, but compared to IE6, it's like bliss. Oh goodness, the horrors. It took twice as long to get your site to work in both FireFox and IE6 than it did to actually create the website.

[SpaceDude]

Sure you can store passwords in firefox or other web browser. But there are several problems with this:

1- This is not very secure at all, they can be viewed by anyone with access to your computer through Tools -> Options -> Show Passwords...

2- You may want to remember passwords which are not linked with a particular website, e.g. password to MSN Messenger.

3- If you need to access your passwords from another computer or PDA there isn't an easy way to transfer them across.

4- It's quite easy to lose all your stored passwords by re-installing your web browser and forgetting to backup.

[nullsquared]

Sure you can store passwords in firefox or other web browser. But there are several problems with this:

1- This is not very secure at all, they can be viewed by anyone with access to your computer through Tools -> Options -> Show Passwords...

... -> Show Passwords -> Enter Master Password -> ... -> Profit

2- You may want to remember passwords which are not linked with a particular website, e.g. password to MSN Messenger.

Fair point.

3- If you need to access your passwords from another computer or PDA there isn't an easy way to transfer them across.

Fair point.

4- It's quite easy to lose all your stored passwords by re-installing your web browser and forgetting to backup.

Rofl, I hard-rebooted and didn't close FireFox in the process - it reset to complete defaults, including the removal of all of my saved passwords