 | | | 
19.01.2019, 16:49
|  | Moderately Amused | | Join Date: Jul 2010 Location: Bern area
Posts: 11,470
Groaned at 92 Times in 87 Posts
Thanked 19,984 Times in 8,842 Posts
| | Re: Englishforum security breach?
I don't know for sure, but I have a feeling that the message is still being tweaked before it is sent out.
Now that it appears the breach is from many years ago, to me there's less of a sense of urgency. I'd guess that the admins want to get the information right, determine how many accounts to deactivate vs notify, etc. before sending out a blanket email.
You lot have all changed your passwords by now and weren't waiting on the email, right?? | The following 2 users would like to thank 3Wishes for this useful post: | | 
19.01.2019, 17:04
| Banned | | Join Date: Jan 2019 Location: close to the frontier
Posts: 1,018
Groaned at 140 Times in 85 Posts
Thanked 597 Times in 379 Posts
| | Re: Englishforum security breach? | Quote: | |  | | | Furthermore, all dormant accounts, those which have not logged in since 01.01.17, will be permanently deleted. The posts from deleted accounts will remain published but labelled as authored by "Guest". | | | | |  That will still leave a lot of 'dormant' accounts fully active and open to abuse. Surely this should be 'since 1.1.18' ??? ...
| 
20.01.2019, 11:03
|  | Forum Legend | | Join Date: Mar 2012 Location: Zurich
Posts: 3,247
Groaned at 66 Times in 51 Posts
Thanked 3,222 Times in 1,715 Posts
| | Re: Englishforum security breach? | Quote: | |  | | | The following security notice is being distributed.
In an abundance of caution, we will force a reset of all user passwords sometime during 16th/17th January 2019. All users will be emailed this security notice. Furthermore, all dormant accounts, those which have not logged in since 01.01.17, will be permanently deleted. The posts from deleted accounts will remain published but labelled as authored by "Guest". A small handful of dormant accounts will be preserved for historical community reasons.
| | | | |
Does this imply that I am doomed to end up someday being a guest and not a ghost?
And are all legends doomed to be guested away? | The following 3 users would like to thank robBob for this useful post: | | 
20.01.2019, 11:17
|  | Forum Veteran | | Join Date: Jan 2012 Location: thun
Posts: 2,221
Groaned at 51 Times in 35 Posts
Thanked 2,962 Times in 1,434 Posts
| | Re: Englishforum security breach? | Quote: | |  | | | That will still leave a lot of 'dormant' accounts fully active and open to abuse. Surely this should be 'since 1.1.18' ??? ... | | | | | In any case Mr Sean Connery has had a narrow escape. Since May 2016 his only posts have been on this thread. Or maybe this is an example of an account which has been hacked, and already in use by an imposter
But I guess it would be enough simply to clear the passwords of all 'dormant' accounts and to carefully scrutinize any request from the person claiming to be the owner for a new password, especially if the the "owner" also claims no longer to have access to the Email address associated with the a account (the latter not being a foolproof test though).
__________________ If you have difficulties with a post which contains a link to a site in one of the Swiss languages, use Google Translate or your own favourite translating browser. | This user would like to thank me.anon for this useful post: | | 
21.01.2019, 15:30
|  | Forum Legend | | Join Date: Jul 2009 Location: Basel
Posts: 3,725
Groaned at 35 Times in 32 Posts
Thanked 7,006 Times in 2,266 Posts
| | Re: Englishforum security breach? | Quote: | |  | | | And are all legends doomed to be guested away?  | | | | | Yes, that is my fear as well. Old conversations would lose so much of their richness if it was simply "guest" talking to "guest".
| 
21.01.2019, 15:53
| | Re: Englishforum security breach?
Slight tweak of the plans there.
Only accounts which have never posted, and have not logged in since 01.01.18 will be deleted. This is approximately 58,000 accounts.
Users who have one or more posts to their name will not be deleted, no matter how inactive they have since become.
The pruning should happen early this week.
| This user would like to thank for this useful post: | | The following 2 users groan at for this post: | | 
21.01.2019, 16:00
|  | Forum Legend | | Join Date: Mar 2009 Location: Glarus
Posts: 8,082
Groaned at 484 Times in 403 Posts
Thanked 14,715 Times in 5,780 Posts
| | Re: Englishforum security breach?
very curious,
So how does deleting old accounts solve / sort / explain / help etc etc a security breach ??
sorry but it seems like EF are totally burying their heads and trying to deflect, given the mother company is based in the EU I think editor bob you should be taking things a tad more seriously.
| This user would like to thank bigblue2 for this useful post: | | 
21.01.2019, 16:03
| | Re: Englishforum security breach?
It doesn't fix past breaches, but it reduces exposure going forward - both to the server and to the users. Your account can't be hacked if you don't have an account.
| This user would like to thank for this useful post: | | This user groans at for this post: | | 
21.01.2019, 16:04
|  | Forum Legend | | Join Date: Mar 2009 Location: Glarus
Posts: 8,082
Groaned at 484 Times in 403 Posts
Thanked 14,715 Times in 5,780 Posts
| | Re: Englishforum security breach? | Quote: | |  | | | It doesn't prevent past breach. But it reduces exposure going forward - both to the server and to the users. Your account can't be hacked if you don't have an account. | | | | | please read back what you just posted out loud.
| This user would like to thank bigblue2 for this useful post: | | 
21.01.2019, 16:07
| | Re: Englishforum security breach?
I often type a reply quickly then go back and fix the grammar and spelling moments after. Apologies for that.
Do you have anything helpful to add to the discussion?
| The following 2 users would like to thank for this useful post: | | The following 3 users groan at for this post: | | 
21.01.2019, 16:09
| | Re: Englishforum security breach? | Quote: | |  | | | please read back what you just posted out loud. | | | | |
....slowly
| This user would like to thank for this useful post: | | 
21.01.2019, 16:13
|  | Forum Legend | | Join Date: Mar 2009 Location: Glarus
Posts: 8,082
Groaned at 484 Times in 403 Posts
Thanked 14,715 Times in 5,780 Posts
| | Re: Englishforum security breach? | Quote: | |  | | | I often type a reply quickly then go back and fix the grammar and spelling moments after. Apologies for that.
Do you have anything helpful to add to the discussion? | | | | | ??? wow
OK, as soon as you where made aware of a potential breach a cpuple of things should have happened
1. EF taken off line while you installed the latest patches of everything
2. ALL accounts should be locked and emails sent with instruction on how to change your password to unlock your account.
these are fairly standard breach actions.
deleting old accounts??? seriously, whats the point? if they have the database and decrypted it then the horse has already bolted, they have your email, your (old*) password and your EF account details so the scam can still work.
stop pretending to do something and do something, or hire someone who can.
* maybe
| The following 3 users would like to thank bigblue2 for this useful post: | | 
21.01.2019, 16:14
| | Re: Englishforum security breach?
And what is the plan besides deleting old unused accounts?
Has a notification even gone out in any way, or do only those that stumble upon these topics have awareness?
| This user would like to thank for this useful post: | | 
21.01.2019, 16:22
| Forum Legend | | Join Date: Jun 2008 Location: Switzerland
Posts: 8,714
Groaned at 317 Times in 244 Posts
Thanked 20,043 Times in 6,989 Posts
| | Re: Englishforum security breach? | Quote: | |  | | | Slight tweak of the plans there. Only accounts which have never posted, and have not logged in since 01.01.18 will be deleted. This is approximately 58,000 accounts.
Users who have one or more posts to their name will not be deleted, no matter how inactive they have since become.
The pruning should happen early this week. | | | | |
Would those be the accounts of spammers, of which all posts have been deleted?
| The following 2 users would like to thank k_and_e for this useful post: | | 
21.01.2019, 16:28
|  | Forum Legend | | Join Date: Mar 2009 Location: Glarus
Posts: 8,082
Groaned at 484 Times in 403 Posts
Thanked 14,715 Times in 5,780 Posts
| | Re: Englishforum security breach? | 
21.01.2019, 16:30
|  | Forum Legend | | Join Date: Mar 2009 Location: Glarus
Posts: 8,082
Groaned at 484 Times in 403 Posts
Thanked 14,715 Times in 5,780 Posts
| | Re: Englishforum security breach? | 
21.01.2019, 17:12
|  | Forum Legend | | Join Date: Feb 2006 Location: Zürich
Posts: 3,117
Groaned at 48 Times in 35 Posts
Thanked 2,426 Times in 1,152 Posts
| | Re: Englishforum security breach? | Quote: | |  | | |
OK, as soon as you where made aware of a potential breach a cpuple of things should have happened
| | | | | As you say, please read what you posted out loud. I do like this new word cpuple!
| This user would like to thank krlock3 for this useful post: | | 
21.01.2019, 17:14
|  | Forum Legend | | Join Date: Mar 2009 Location: Glarus
Posts: 8,082
Groaned at 484 Times in 403 Posts
Thanked 14,715 Times in 5,780 Posts
| | Re: Englishforum security breach? | Quote: | |  | | | As you say, please read what you posted out loud. I do like this new word cpuple! | | | | | it wasn't due to any typo or grammar issues of bob's post, more that it was just total b0ll0cks
| 
21.01.2019, 17:15
|  | Forum Legend | | Join Date: Feb 2006 Location: Zürich
Posts: 3,117
Groaned at 48 Times in 35 Posts
Thanked 2,426 Times in 1,152 Posts
| | Re: Englishforum security breach?
How many b0ll0cks?
A cpuple?
| The following 2 users would like to thank krlock3 for this useful post: | | 
21.01.2019, 17:17
| Banned | | Join Date: Jan 2019 Location: close to the frontier
Posts: 1,018
Groaned at 140 Times in 85 Posts
Thanked 597 Times in 379 Posts
| | Re: Englishforum security breach? | Quote: | |  | | | Only accounts which have never posted, and have not logged in since 01.01.18 will be deleted. This is approximately 58,000 accounts.
Users who have one or more posts to their name will not be deleted, no matter how inactive they have since become. | | | | | There are really 58'000 accounts with no posts? The forum can be read without even having an account. Why would 58'000 people create accounts but never post?
How many accounts are there with at least one post?! |
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | | Thread Tools | | Display Modes | Linear Mode |
Posting Rules
| You may not post new threads You may not post replies You may not post attachments You may not edit your posts HTML code is Off | | | All times are GMT +2. The time now is 02:56. | |