Attention - Password and Security Update
Over the next few days we will be implementing some changes to our forum password strength and password expiration policies. To make sure you continue having the best experience possible on the community, we regularly monitor the site and the Internet to keep everyone's account information safe. We've recently become aware of a potential risk to some accounts coming from outside of this community. Just to be safe, we are implementing the following changes to improve security even further:
1) We are asking everyone to change their passwords (and will force a one time reset). Along with every user on the forum, new passwords will need to be more complex, and can't be simple words (sorry, you can't have "fluffy" as your password anymore!). Please use a password unique to this community. Reusing passwords can expose your account indirectly when other websites (Twitter, Linkedin, Badoo, etc) are compromised; and
2) Your passwords will expire on a 365 day basis. When you login on the 366th day, you will have to change it.
We'll also be sending out an email to users to let them know about the changes, in upcoming weeks.
Thanks for that. While it sounds like being a bit of a pain (and no, I am not "fluffy", either by name or nature!), it's good to know you are taking precautions.
Sorry but I think you're wasting your time doing this. Why do you need enhanced security anyway? It is a web forum and you haven't got my bank details or anything. It is for users to decide how complex or otherwise they want their passwords which will surely depend upon how significant it would be for their account to be hacked on any given site. The only reason I can see that anyone might even bother to try to hack this site is on the basis that people might be using the same passwords here as for other sites of greater significance. Even then, if they looked at the home page first - which has as "news" items from nearly a year ago - and look at how little traffic there has been recently, they would surely conclude it wasn't worth the effort. That is even assuming that anyone seriously still believes that forcing people to put numbers or whatever in their passwords actually increases security.
I respectfully suggest you spend your time doing something more useful like updating the home page and fixing broken links to the Buyers' Guides.
Yup, don't like it either.....lower case, upper case, numbers, symbols...really? It's not safe if I have to write it down somewhere lol :D
This is a wonderful site and I can appreciate the pride the owners have. Having said that it is a site where people exchange non-critical information or am I mistaken and critical financial information is shared here? The password requirements are more stringent than my banks. If I have to come up with a new complicated password every year, it is likely I will stop coming to this site. Yes I changed my password to meet the requirements but this is ridiculous. :-)
ps. Keep in mind many people may give up in frustration when initially attempting to sign-up. The idea should be to make it easy and convenient for people to come to this site. The new password policy is making it hard.
I almost threw in the towel after the third day.
The Admins contacted me the day AFTER I managed to get the password changed, only to reset it again!
But all is good now.
For Mac users I would recommend buying 1Password (also on iOS for apple phone/ipad). I have been using it for years as an IT guy and you just need to remember one 'vault' password and then it stores all your web logins (amonst other things). I also have credit card info and lots of other stuff. means I use a 1 click to book flights etc without having to hand fill out all these web forms as well as not having to remember username/passwords. I got hacked previously and had to change literally hundreds of accounts online. Now I use a randmon 32 character password with numbers and symbols which is extermely hard to crack.
Of course each to their own but unless its likely someone can get on your machine and knows your vault password its highly secure and encypted (there is no way to decrypt if you loose the vault password).
Hope that helps some peeps.
We can revisit this as a site and change it later to meet the sites needs, right now we needed to find a solution. We used industry standers and copied the other companys with similar issues and how they responded.
Everything can be changed, nothing is permanent
I believe that was a spammer
|All times are GMT -8. The time now is 03:15 PM.|
Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2020, vBulletin Solutions, Inc.
User Alert System provided by Advanced User Tagging (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
vBulletin Security provided by vBSecurity v2.2.2 (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.