Screwed we are.the waffles database is already on SALE!
seems like the database wasn't actually 'compromised'.to say compromised would be an understatement,the whole database got jacked and its already on SALE in places like http://www.h4cky0u.org/forums/viewtopic.php?f=24&t=5176 ...so hell yeah its nothing serious,sarcastic indeed..its now definite that some people have been screwed and screwed really bad...u don't want people like some of those in that forum with your personal info,trust me or at worse for the thing to land on the hands of the M&R or some govt. highest bidder,if whoever did it did it just for the fun of it then that becomes a compromise but doing it so as to sell it is something worth to be concerned about..this is already a disaster happening...am also hearing that the database has been around for a while now,so this didn't just happen and in my own opinion the security alert at waffles would have been a little more strong worded,than what it was..
Re: Screwed we are.the waffles database is already on SALE!
Well i dont care about my account info cuz i already take precautions at the begining:shifty: (but ppl should and will care!)
and i hope ppl wont meet with a policeman when tomorrow morning open their door...(especially staff members and top uploaders )
Then thanks to waffles and aint bithdtv had same fact one year ago?
Re: Screwed we are.the waffles database is already on SALE!
I guess this is the chance that we all take being a art of these trackers. How dangerous is it?
Well, usernames and passwords are a given (and if you use the same ones on even 2 different sites, youre a fucking idiot). Then there are the logs possibly(?) Possible IP logs of activity on the site. I dont think thats too dangerous, since if people really wanted your IP they can get it.
but, life moves on and we continue to take our risks
Re: Screwed we are.the waffles database is already on SALE!
Re: Screwed we are.the waffles database is already on SALE!
Quote:
Originally Posted by
puckface
Well, usernames and passwords are a given (and if you use the same ones on even 2 different sites, youre a fucking idiot).
DB Password won't get you very far, even if you use the same password everywhere, since they are md5 encrypted. If you can decrypt md5 strong passwords then i guess you won't be chasing the Waffles DB... ;)
So resetting the hash codes should solve just about every security issue there is.
IPs and statistics, i guess it might help to establish a warrant but it is entirely based on where you live. They might scare you off though.
My best guess is that except for the embarrassment to the site there is not much more that can happen... but that's just the optimistic me. :dabs:
Re: Screwed we are.the waffles database is already on SALE!
Quote:
Originally Posted by
tutipute
Quote:
Originally Posted by
puckface
Well, usernames and passwords are a given (and if you use the same ones on even 2 different sites, youre a fucking idiot).
DB Password won't get you very far, even if you use the same password everywhere, since they are md5 encrypted. If you can decrypt md5 strong passwords then i guess you won't be chasing the Waffles DB... ;)
So resetting the hash codes should solve just about every security issue there is.
IPs and statistics, i guess it might help to establish a warrant but it is entirely based on where you live. They might scare you off though.
My best guess is that except for the embarrassment to the site there is not much more that can happen... but that's just the optimistic me. :dabs:
Yeah, I understand the hashing and the salting of passwords. But if they are that secure why did Waffles advise changing them? Thats what I never understand. A trackers says "your passwords cannot be found becase they are hashed, but you should change them anyway" I find that comical.
Re: Screwed we are.the waffles database is already on SALE!
Will waffles face the ghost of Oink?
i cannot imagine!
Re: Screwed we are.the waffles database is already on SALE!
Quote:
Originally Posted by
mshassy
Will waffles face the ghost of Oink?
i cannot imagine!
Over a stolen database? no.
Re: Screwed we are.the waffles database is already on SALE!
You like your site spread all over the net then join every site that doesn't now about security.Keep joining all the dick head sites.
Re: Screwed we are.the waffles database is already on SALE!
Quote:
Originally Posted by
puckface
Quote:
Originally Posted by
tutipute
DB Password won't get you very far, even if you use the same password everywhere, since they are md5 encrypted. If you can decrypt md5 strong passwords then i guess you won't be chasing the Waffles DB... ;)
So resetting the hash codes should solve just about every security issue there is.
...
Yeah, I understand the hashing and the salting of passwords. But if they are that secure why did Waffles advise changing them? Thats what I never understand. A trackers says "your passwords cannot be found becase they are hashed, but you should change them anyway" I find that comical.
Precaution never harmed anyone, that's the reason... Besides, if someone was going after an account it would be the admin's account and not yours.
