!!ATTENTION!! - Please Secure Your Passwords!

[boris]

and know how to type it?

Just use a password manager and you don't have to know how to type it.

[Marrub]

and know how to type it?

Just use a password manager and you don't have to know how to type it.

Of course. I would really imagine 1,114,111ⁿ or something like that I don't know how to math would be far more secure than 62ⁿ, so unicode passwords would be quite secure.
Edit: Actually, it would be something more like 255ⁿ², but that's still much better.

[Accensus]

It was just a suggestion so it has not been implemented just yet. Not even sure if it'll ever come to pass.
[This was regarding the inactive approval suggestion.]

EDIT: Nevermind, the post is gone, lol. Don't delete posts, mate. Pleez.

[kevansevans]

Holy crap, no wonder I had to get mod approval for everything I posted. Sorry to whomever was putting up with my posts, I don't visit often enough ;-;

[Gothic]

Holy crap, no wonder I had to get mod approval for everything I posted. Sorry to whomever was putting up with my posts, I don't visit often enough ;-;

I don't remember your account being hacked, but still you should change your password with a more strong one, just in case.

By the way, when I logged in, I got the "too many attempts" message again. That fucker doesn't give up, does he? I wish it could be possible that thing that Eruanna mentioned earlier, six months minimal I'd say.

[wildweasel]

Holy crap, no wonder I had to get mod approval for everything I posted. Sorry to whomever was putting up with my posts, I don't visit often enough ;-;

I don't remember your account being hacked, but still you should change your password with a more strong one, just in case.

Yeah unfortunately you've run right into one of the measures we've been trying to put up to stop the hijacker; accounts that haven't visited in more than a certain amount of time have been redirected back to the approval queue.

[Coraline]

Got the "too many login attempts" again. Ive been getting those a lot lately - good thing I always use strong passwords

[YukesVonFaust]

Got the "too many login attempts" again. Ive been getting those a lot lately - good thing I always use strong passwords

Same thing goes to me, too!

[osjclatchford]

likewise... its getting quite annoying every-time I log in to be honest... I still expect to log in and find I've been hacked and loads of abuse been posted in my name or something...

its another worry we could all do without truth be told...

[Accensus]

Change the "captcha", maybe? It's the same question everytime. Doesn't really help, does it? It may be a little too late for that, but it'll sure prevent further successes in the area of brute force.

EDIT: As long as its something random-generated and hard to predict...

[Rachael]

For now, just put "X" for your password to trigger the question. That's a lot less effort than typing in your password twice and getting frustrated by the question appearing, which by now you probably have the answer memorized anyway.

Also, if you are the only one using your computer, use the option to remember your login. If your password is secure enough anyway, you have very little need to worry about someone compromising your account. phpBB will give your browser a special key that automatically enters your username/password (serverside only, obviously) and logs you in every time you visit the forum. And unless someone gets access to your browser cookies, no one can steal that, anyway.

[Graf Zahl]

Apparently the hijacker changed tactics. Instead of trolling the more recent posts look like mass-spamming with pointless shit, apparently only designed to create work for the mods here.
I'm just wondering: Doesn't the forum software have the ability to mass-delete posts by a specific user to make that task easier, instead of manually moving all the shit to the garbage bin?

[wildweasel]

Apparently the hijacker changed tactics. Instead of trolling the more recent posts look like mass-spamming with pointless shit, apparently only designed to create work for the mods here.
I'm just wondering: Doesn't the forum software have the ability to mass-delete posts by a specific user to make that task easier, instead of manually moving all the shit to the garbage bin?

Sadly, none that I have any access to.

[Rachael]

Is there any reason to preserve the troll posts other than looking up IP addresses? (which is virtually useless when chasing down someone abusing proxies)

It might make everyone's life easier to just use the MCP and approve/disapprove in mass. You can destroy and hour's worth of work in 30 seconds just with the tools built into phpBB.

[wildweasel]

I did just find an option to Delete All Posts by User, which has worked in this specific instance but I wouldn't want to use it on an account that has made more than a handful of posts in the past, since it eradicates ALL of the posts.

IP addresses and hostnames are all being logged in every instance, though.