Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.

ForumsGeekzoneOooops... We have reset your passwords
View this topic in a long page with up to 500 replies per page Create new topic
Prev1 | 2 | 3 | 4 | 5 | 6Next
4 posts

Wannabe Geek
  Reply # 774733 5-Mar-2013 07:42 Send private message

Did the same thing to me, I put my user name in and hit send and it said it did not recoginize my user name so I put in my email address and it sent the link to my email along with my user name so I went bck to the site and tried my user name again and same thing said it did not recoginize my user name. I went back clicked the link changed my password and everthing worked fine.

3752 posts

Uber Geek

Trusted
Subscriber
  Reply # 774734 5-Mar-2013 07:42 Send private message

sqlpro:atleast in this case, if all passwords are reset , how its going to re-authenticate before allowing new password?


You'd have to reauthenticate based on another token, or use the email address to reset passwords.




Asus eee pad transformer
iPod 2G
Windows 7 PC
Lots and lots of Nikon camera gear

25 posts

Geek
  Reply # 774735 5-Mar-2013 07:45 Send private message

freitasm:
kenkeniff:
muppet: I'm curious - from a technical point of view, what did you do to the database to reset everyone's password? 

freitasm:
Technically? I was going to update one password but instead typed the command and pressed the EXEC button before finishing up the WHERE clause. That's not very technical...


I think he was asking did you;

a) NULL everyone's password so no-one should be able to log on?
b) Replace everyone's password with an identical HASH, in which case everyone could log on with the same password (if they knew what it was)?
or c) Replace everyone's password with a plain-text string (in which case you're storing plain-text passwords)?


a) NULL password

As for c) if I had stored a plain-text string then no one would be able to login either since the password is hashed and the likelihood of an English word matching a hash is pretty low...




Thanks for the clarification



BDFL
43784 posts

Uber Geek

Administrator
Trusted
Geekzone
Subscriber
  Reply # 774741 5-Mar-2013 08:00 Send private message

Having said that... Looking at this now I should really just had put Geekzone on maintenance mode, restore the database and applied all logs to five minutes before the update.

This would be easier for everyone... Sorry again :)

I have updated the login page to accept either username or email in the reset field, and have changed the text. Also added labels to the reset page as someone here suggested it was hard to see both fields.

So in all some good changes.

And yes, I did get abused by a few people. People who join to enter competitions trying to score some freebies then call you names if you email them. Oh well.






Mauricio Freitas (Geekzone Admin, Devil's Advocate, my blogtechnology disclosure, my tweets, Web Performance Optimization

Geekzone Price comparison | Amazon Kindle order page | How to get the best out of Geekzone | New Zealand IT Jobs | Geekzone News | Jinglebugs 

112 posts

Master Geek
  Reply # 774743 5-Mar-2013 08:03 Send private message

Got the email, then couldn't see the wood for the trees - finally saw the New Password box Embarassed

It's probably not a bad idea for us to redo the password occasionally anyway ;) 

380 posts

Ultimate Geek

Subscriber
  Reply # 774744 5-Mar-2013 08:04 Send private message

Not to worry Mauricio, it shows that you are human - like most of us.

Those who never make mistakes are just better at finding someone to blame!




Procrastination eventually pays off.

aim

200 posts

Master Geek
  Reply # 774750 5-Mar-2013 08:22 Send private message

As a sys admin, I find this amusing :P

1298 posts

Uber Geek

Subscriber
  Reply # 774752 5-Mar-2013 08:22 Send private message

Just reset mine. No problems at all.
Was about time it needed changing anyway :-)))




Offense can never be given, only taken ...

101 posts

Master Geek
  Reply # 774753 5-Mar-2013 08:26 Send private message

Mine seems to still be working, just selected from my bookmarks and I'm in.



BDFL
43784 posts

Uber Geek

Administrator
Trusted
Geekzone
Subscriber
  Reply # 774761 5-Mar-2013 08:37 Send private message

Cloudy: Mine seems to still be working, just selected from my bookmarks and I'm in.


That's because you were on Geekzone before with the option to keep logged in. Your browser has a token that will keep it logged in. We do not store the password on cookies, so if you logout now then you will see your password is reset, like everyone's else.





Mauricio Freitas (Geekzone Admin, Devil's Advocate, my blogtechnology disclosure, my tweets, Web Performance Optimization

Geekzone Price comparison | Amazon Kindle order page | How to get the best out of Geekzone | New Zealand IT Jobs | Geekzone News | Jinglebugs 

903 posts

Ultimate Geek

Trusted
Telecom NZ
  Reply # 774779 5-Mar-2013 09:06 Send private message

Pffft 70k. I've so got you beat on numbers and customer impact. No dramas though since it is very minor for most folks on here.... My case... Not so much.




I work for Telecom, but as always my views are my own.



BDFL
43784 posts

Uber Geek

Administrator
Trusted
Geekzone
Subscriber
Reply # 774781 5-Mar-2013 09:08 Send private message

plambrechtsen: Pffft 70k. I've so got you beat on numbers and customer impact. No dramas though since it is very minor for most folks on here.... My case... Not so much.


Good try at trolling. I will recommend PeterReader have a word with you to learn the tricks.

The difference is that 70k reset passwords on Geekzone by a mistaken EXEC is different from 70k accounts accessed by spammers on Yahoo!Xtra.

It's not all numbers. As you said, it's the impact...





Mauricio Freitas (Geekzone Admin, Devil's Advocate, my blogtechnology disclosure, my tweets, Web Performance Optimization

Geekzone Price comparison | Amazon Kindle order page | How to get the best out of Geekzone | New Zealand IT Jobs | Geekzone News | Jinglebugs 

79 posts

Master Geek
  Reply # 774798 5-Mar-2013 09:21 Send private message

Aaroona: Lets call it "security awareness day" instead off "oops I flicked the wrong switch!" :p everyone should change their passwords sometime!


x2

1245 posts

Uber Geek

Trusted
Subscriber
  Reply # 774824 5-Mar-2013 09:51 Send private message

Handy, because I'd forgotten my password anyway!
Cheers, and stuff the competition whiners.

805 posts

Ultimate Geek
  Reply # 774858 5-Mar-2013 10:23 Send private message

Thanks for the email heads up it was probably a good time to change the password anyways been using the same one for far too long

and as my fav saying goes

Sh@t happens sometimes you just get stuck in the middle of it !




Asus Crosshair IV Formula AMD Phenom II X4 965BE, 8GB Corsair Vengence LP, Sapphire Radeon HD7850 2GB 950/1250, 1x WesternDigital WD2500AAJS 7200rpm 8MB cache SATAII , 1x Samsung spinpoin F1 HD502IJ 1x storage mode,
2x Samsung Spinpoint F1 HD502IJ RAID0 Boot, 1x Pioneer DVR212s 18x DVDRW, SilverStone ST75F-P (750W) Full Modular PSU, OS WINDOWS 7 x64 ultimate (7600), SilverStone RaVeN RV02B-W

Prev1 | 2 | 3 | 4 | 5 | 6Next
View this topic in a long page with up to 500 replies per page Create new topic



Twitter »
Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when new jobs are posted to our jobs board:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:




News »
Amazon brings Kindle Fire to 170 countries, expand app store to more than 200 countries
Posted 24-May-2013 14:41

Gen-i and SAP partner in mobile business
Posted 23-May-2013 09:23

Ericsson to close down telecom cable manufacturing
Posted 23-May-2013 08:46

FaceToFace Communications and StarLeaf bring unique cloud-based videoconferencing to Australia and New Zealand
Posted 22-May-2013 09:12

IBM Watson finds a new job: customer services
Posted 22-May-2013 08:37

Microsoft unveils Xbox One
Posted 22-May-2013 08:11


Trending now »
Hot discussions in our forums right now:

Fecked up religious people strike again :-(
Created by Mark, last reply by Mark on 24-May-2013 16:04 (70 replies)
Pages... 3 4 5

Cannabis is illegal yet we have really strong 'legal highs' ?
Created by qwerty7, last reply by freitasm on 23-May-2013 23:20 (74 replies)
Pages... 3 4 5

Xbox One
Created by DjShadow, last reply by Kingy on 24-May-2013 13:48 (68 replies)
Pages... 3 4 5

A new project coming to Geekzone
Created by freitasm, last reply by jeffnz on 24-May-2013 15:01 (338 replies)
Pages... 21 22 23

Troublesome transition to VDSL
Created by oseiler, last reply by michaelmurfy on 24-May-2013 13:57 (18 replies)
Pages... 2

HTC One (2013) owners' discussion
Created by Dingbatt, last reply by wlfkfgkwlaktka on 24-May-2013 15:49 (1564 replies)
Pages... 103 104 105

Orcon, Is this for real or a scam??
Created by old3eyes, last reply by DarthKermit on 22-May-2013 19:12 (29 replies)
Pages... 2

Vodafone Naked Broadband Speeds (Auckland CBD)
Created by wscalioni, last reply by grkiwi on 20-May-2013 21:13 (14 replies)


Geekzone Jobs »
Most recent NZ jobs in technology:

Test Practise Lead
Posted 24-May-2013 15:28

Senior Test Analyst
Posted 24-May-2013 15:28

Business Analyst Practice Manager
Posted 24-May-2013 15:28

Game Developer
Posted 24-May-2013 15:28

Contract Change Analyst - $$ neg Large Corporate
Posted 24-May-2013 15:28

Front End Web Developer /.Net, Python or PHP
Posted 24-May-2013 15:28

Applications Architect | Leading Organisation
Posted 24-May-2013 15:28


Geekzone Live »
Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.

Updates »
Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.