|
Password Changes -Buzz - Jul 09 05:20am |
|
|
Due to a few security issues we needed to clear out and finish up, the passwords on the servers have been or in some cases are going to be changed. So be sure to check the server pages for the updated passwords before you go to play. That is all. |
| Login and add your comment! | Previous Comments > |
| Comments |
|
_cmad_ - Ex-Student 
|
Quote: A student i know ( Jarhok ) Has haven problems with it, and i cant help him since i dont have his email and cant post it for him. AFAIK when you sign up for the Academy, you have to provide a valid e-mail address so that you can be contacted; if this is so, there's no (legit) reason jarhok has no e-mail (as you said; I didn't check it out). And btw, 1337omfgh4x passwords aren't more secure than passwords such as the ones JG posted... If the person can get the password, 1337-formatted or otherwise, it can still be used with ease.  _______________ Your friends of today, are your enemies of tomorrow. This comment was edited by _cmad_ on Jul 15 2004 07:24am. |
|
DJK - Student 
|
A student i know ( Jarhok ) Has haven problems with it, and i cant help him since i dont have his email and cant post it for him. Just to let you know, maybe make one that is alittle more clear. This comment was edited by DJK on Jul 15 2004 02:05am. |
|
JavaGuy - Student 
|
Again, that's precisely my point on the impossible-to-read passwords: The security problem is not that they can be guessed (they can't) but that we necessarily must give them out to a whole bunch of people. Passwords that look like heiroglyphics do not help in such a situation. _______________ My signature is only one line. You're welcome. |
|
_cmad_ - Ex-Student 
|
Quote: The passwords would not need to be changed if it weren't for troublemakers having dynamic IP's. Even once they are banned from the website they can still join the servers if they remember the old password. That is why they get changed. Even then if they have a friend who goes and tells them the password, they can still join despite having 20 IP's banned. And for those that do this, it doesn't matter how "good" they behave on the servers. They broke the rules and are banned, and those who help them also get banned. That's why. _______________ Your friends of today, are your enemies of tomorrow. |
|
Kestral - Student 
|
I am sick of password changes.......i Always remember them.......i have like 20 passwords in my head =P jeese please tell me why this is happening  _______________ A full fledged Weapon master from where he is from. He is one who wants to learn the way of the Jedi, though he will not give up his love for the weemon!!! |
|
JavaGuy - Student 
|
Buzz, That's precisely my point. What makes the passwords insecure is not that they are guessable. They are insecure for social reasons. I seriously doubt that any Academy password has ever been or ever will be guessed. If the password were "dog" probably nobody would ever guess it, even though they certainly could. I buy the argument that "l337" passwords are not something someone could claim to have guessed. But I don't buy that this is any more true of a l337 password than it is of, say, jaBBa2487. That's easy to memorize, just four digits and remember that the B's are capitalized, but it's also easy to read and get right the first time. Does anyone think that jaBBa2487 is likely to be hacked/guessed? Ever? It is possible to create a simple password that is nonetheless unguessable. [edit] ...And I'm not disparaging your efforts to maintain security. I'm grateful for that. I just brought this up because I was frustrated after trying five times to type in a password one night after the server password was changed twice in one hour. I just thought it was overkill. _______________ My signature is only one line. You're welcome. This comment was edited by JavaGuy on Jul 12 2004 06:25pm. |
|
Buzz - Student 
|
The passwords would not need to be changed if it weren't for troublemakers having dynamic IP's. Even once they are banned from the website they can still join the servers if they remember the old password. That is why they get changed. Even then if they have a friend who goes and tells them the password, they can still join despite having 20 IP's banned. And for those that do this, it doesn't matter how "good" they behave on the servers. They broke the rules and are banned, and those who help them also get banned. As for the use of 1337 passwords: In the past there have been people who have joined our servers without being members. When they were confronted with how they obtained the passwords, they claimed to have guessed them. So there is a legitimate reason for making passes a little bit complex. _______________ When you are going through Hell, keep going. -Sir Winston Churchill. Those who seek power and control of others, no matter the level, no matter the intentions, should never be given it. |
|
SaberWeildinKow - Student 
|
Take it easy there JavaGuy, I mean it only takes me 5 minutes to type it in  Nah it's all good, they'll change them soon enough  |
|
JavaGuy - Student
|
And BTW, are the "lee7" passwords really secure? A password is secure, IMO, if it doesn't have to be changed more often than every five years or so. How are we doing? _______________ My signature is only one line. You're welcome. |
|
_cmad_ - Ex-Student
|
I agree with JavaGuy... Not many people (I mean "not SOOOOOO many" wanna crack the server passwords. And if some some, not many of them would achieve that (even with only letter-passwords). Passwords such as the ones JavaGuy proposed are good enough. Remember; they are nothing but game servers; they're not bank accounts. Even if people do break into the servers, let them be handled like all the lamers are; and AFAIK we got lots of those. Having mind-boggling passwords for game-servers doesn't really help. And as JG said, if you wanted top security then the passwords should also be transmitted through SSL and stuff Note that I didn't say they're hard to remember; they're just more difficult to remember; and all the 1337-characters in there make them difficult to be gotten right. EDIT: next thing you know, our passwords are MD5 encrypted  _______________ Your friends of today, are your enemies of tomorrow. This comment was edited by _cmad_ on Jul 11 2004 07:05pm. |
|
Immortal Rites - Ex-Student 
|
Quote: Hey, I remembered both of em already. And if I can, I assure you everyone else can. <--------- Has about 3 brain cells left  That's the problem, our braincells fight over them so we don't remeber. _______________ When you wake up dead it's time to realize you're dead. Proud member of Saber Lords clan |
|
cHoSeN oNe - Retired 
|
Two Solutions: 1) Download ASE and add the JA servers to your favorites. 2) Copy and Paste the displayed password into the settings for the server. Then all you need to do is double click on the server and it automatically enters the password in there for you, since you saved it. I never use the in game browser to connect to servers. _______________ Get busy living, or get busy dying. |
|
JavaGuy - Student
|
It has absolutley nothing to do with memorizing them. It's just a matter of figuring them out in the first place. And again, I don't buy the reasoning that our passwords that are transmitted unencrypted by the web server need to be super-secure. Mix of letters and numbers, sure great. Odd mix of upper and lowercase, also good. Impossible to read? I fail to see the benefit. _______________ My signature is only one line. You're welcome. |
|
Orion - Retired 
|
ya u should see some of the passwords I haved memorized worse than the current pws _______________ When a Man lies he murder's some part of the world. These are the pale deaths which men misscall there lives. All this I cannot bear to witness any longer. Cannot the kingdom of salvation take me home? -Cliff Burton Owner of Smily's 1900th comment | <Lady_Catherine> i love your sexy white socks! | (Lady_Catherine) i adore u! | (Lady_Catherine) onion (Lady_Catherine) i lub u |
|
Gradius - Ex-Student 
|
Hey, I remembered both of em already. And if I can, I assure you everyone else can. <--------- Has about 3 brain cells left _______________ - Proud padawan of Kueller. - We really are at the beginning of it all. The trick, of course, is to make sure we never find the end. - Bill Bryson, A Short History of Nearly Everything - <gen-e-sis-happy> Liek, you can train, liek, a n00b, but he'll just be a trained n00b... --> Wise words! - "daer SOE me likes your a company i am having your some money for letting me do stuff cos mes the best amd i do it all meself" - Slider |
|
JavaGuy - Student
|
If these were bank account passwords or something else that is going to be subject to a "dictionary attack" (where a hacker writes a program to try every word in the dictionary, then every combination of two words, and sometimes three--supposedly 80% of passwords in the world can be cracked in seconds by a dictionary attack), that would be another matter. Truly secure passwords need an odd mix of upper and lower case plus at least one numeral thrown in. But are people really trying to hack our passwords so they can get on and lame us? What would be wrong with "bobafett1984" or "banthafodder2000"? Those include both letters and numbers but do not take six tries to get right. I appreciate the thought that goes into making truly secure passwords. But remember that the server password pages on the site are not even secure pages, so exercising Unix-world-style security in choosing passwords is really overkill. _______________ My signature is only one line. You're welcome. |
|
Orion - Retired 
|
the more numbers, varying case letters you have in a password the more secure it is. so the 1337 speak passwords are secure so that ppl cannot guess them or use programs to crack them _______________ When a Man lies he murder's some part of the world. These are the pale deaths which men misscall there lives. All this I cannot bear to witness any longer. Cannot the kingdom of salvation take me home? -Cliff Burton Owner of Smily's 1900th comment | <Lady_Catherine> i love your sexy white socks! | (Lady_Catherine) i adore u! | (Lady_Catherine) onion (Lady_Catherine) i lub u |
|
Bail Hope of Belouve - Student 
|
Quote: I, | and l all look a lot alike in some browsers, e.g. mine. On some the 1 looks like them too. I agree, perhaps a small change to remove all the I, | and 1's? or perhaps make it so they are very recognizable or something, if you get my point. But most passwords are OK... kind of, it'll just take a hell of a time to type them in _______________ Visit the Belouve Family Website! Quote: I try to have fun with my friends and try to make a difference as best I can. What does making a difference mean? Well, it can be as simple as saying hello, answering a question that seems obvious or heck, just talking. -- Vladarion
Want to know Vladarion? Read the Article about his life here. |
|
Immortal Rites - Ex-Student
|
Quote: How the heck are we supposed to learn the new password(s)? Let me be the first to say: it sucks. I'll second that! These "1337" passwords are plain stupid! _______________ When you wake up dead it's time to realize you're dead. Proud member of Saber Lords clan |
|
DJK - Student
|
Me too! |
|
Leww - Student 
|
Quote: How the heck are we supposed to learn the new password(s)? Let me be the first to say: it sucks. /me agrees |
|
SilkMonkey - Distributor of Cold Ones 
|
How the heck are we supposed to learn the new password(s)? Let me be the first to say: it sucks. _______________ |-HK-47 -SilkMonkey: You are receiving a warning for being_too_sexy. If you do not stop, action will be taken against you.|| (11:13:43) � Virtue dances for Silk ||Smiling owner of Smilykrazy's 6000th comment =) ||Odan Wei's Proud Big Brother|| Janus is my official TaruTaru Cuddly Animal Type Person. ||(@Virtue) Or you could just be a man and set fire to your genitals.....you won't fall asleep for days after that.......trust me.||Thomas Skywalker er for sexy for sitt eget beste!!!!| Not changing sig until the JA loosens up. (Started: Aug 31, 2005) This comment was edited by SilkMonkey on Jul 10 2004 07:47pm. |
|
Setementor - Jedi Master 
|
I'm NEVER going to remember this one! Good one. P.S. I Just remembered the wireplay one. ...maybe there not that hard after all. This comment was edited by Setementor on Jul 10 2004 12:49am. |
|
JavaGuy - Student
|
They're getting harder and harder to type! I, | and l all look a lot alike in some browsers, e.g. mine. On some the 1 looks like them too. _______________ My signature is only one line. You're welcome. |
|
DJK - Student 
|
not again.. |
| Login and add your comment! | Previous Comments > |