FaggoStorm wrote:Im not sure if this is the right place too put this question, that I should put it in another place of the foruns or if I should even ask this.
What is happening with the trolls lately? Why are they trying SO HARD to get banned? If you create a account on a forum, you probably want that account to last long, and also respect the rules.
Also, what's ban evasion?
One of the staff told me that this problem is connected with zandronum people. There is some huge issue going on behind us users. The forum is not that safe place it used to be.
Citation needed. You have 19 posts to your name and one of them is claiming you got an erection from the avatar of another user, so I would *really* like to know what makes you qualified to know about Zandro drama and why we should believe one of the ZDoom staff gave you of all people special info.
For that matter, why did your account break a 7 year hiatus *just* to post about that erection?
Your account behavior does *not* particularly add up.
FaggoStorm wrote:Im not sure if this is the right place too put this question, that I should put it in another place of the foruns or if I should even ask this.
What is happening with the trolls lately? Why are they trying SO HARD to get banned? If you create a account on a forum, you probably want that account to last long, and also respect the rules.
Also, what's ban evasion?
One of the staff told me that this problem is connected with zandronum people. There is some huge issue going on behind us users. The forum is not that safe place it used to be.
Citation needed. You have 19 posts to your name and one of them is claiming you got an erection from the avatar of another user, so I would *really* like to know what makes you qualified to know about Zandro drama and why we should believe one of the ZDoom staff gave you of all people special info.
For that matter, why did your account break a 7 year hiatus *just* to post about that erection?
Your account behavior does *not* particularly add up.
Maybe he had a break. Not everyone shitposts like you. No offense.
Graf Zahl wrote:Who knows? Maybe it's just an idiot who has found some automated way to find users whose password is 'password' or similar obvious stuff...
You seem to be joking, but that stuff exist. It's all part of Kali Linux (former Backtrack). I am a pentester (aside of being programmer) so I know. I think also this exist as a module for Metasploit, but not sure here.
Big C wrote:
Citation needed. You have 19 posts to your name and one of them is claiming you got an erection from the avatar of another user, so I would *really* like to know what makes you qualified to know about Zandro drama and why we should believe one of the ZDoom staff gave you of all people special info.
For that matter, why did your account break a 7 year hiatus *just* to post about that erection?
Your account behavior does *not* particularly add up.
Maybe he had a break. Not everyone shitposts like you. No offense.
Given the necromantic behavior from him is similar to that of other accounts recently, I somehow doubt it was a break.
Furthermore, I think I am on-topic and *not* particularly shitposting, and lastly *you've* only got two posts so you fail to convince me.
If you don't think something fishy is going on around here lately I'd like to hear an actual explanation from you.
Yeah, i logged in this evening and I found a message from the forum saying: "too many failed login attempts for merlin86" .
meh, maybe some script kiddie found some new "program" to test it?
SUGGESTION : implement mandatory two-factor authentication until the situation get normal again? but someone could not have a cellphone/smartphone for this... (imho...)
Well, at least they included a safeguard here: if a user posts their password, it shows up for them, but everyone else will just see ********. Not perfect, but it helps.
merlin86 wrote:SUGGESTION : implement mandatory two-factor authentication until the situation get normal again? but someone could not have a cellphone/smartphone for this... (imho...)
That'd be the end of the forum. To much of a hassle. Two-factor authentication may sound nice but this is a typical instrument thought up by theoreticians. How would you expect this to work when some people still use passwords like "password" or "0000" etc.? The only solution would be to disallow users to change their password and only hand out some that are not easily crackable.
I am fairly certain it is the same hacker stealing accounts over and over and over again at this point and I'm really getting worried about the site's security.
Caligari87 wrote:Well, at least they included a safeguard here: if a user posts their password, it shows up for them, but everyone else will just see ********. Not perfect, but it helps.
merlin86 wrote:Yeah, i logged in this evening and I found a message from the forum saying: "too many failed login attempts for merlin86" .
meh, maybe some script kiddie found some new "program" to test it?
It would definitely seem that a lot of these troll impostors are getting in by way of brute force. Therefore, it's highly advisable to strengthen your passwords!
Is there a way for the forum to block login attempts from one IP address for a short while after several tries? Sure there are proxies and stuff, but unless the script kiddies have a botnet at their disposal it'd make brute force more complicated for them.
What I find worrisome is that whoever is breaking into these accounts obviously has some knowledge and familiarity with the Doom community, and possibly specifically with the ZDoom community. This doesn't feel like just some random thing where a script kiddie just happened to discover some unsecured accounts; it feels very targeted. Maybe that's paranoia, I dunno.
