| Pages: 1 2 3 4 5 6 7 [8] 9 10 11 12 13 14 15 16 17 18 19 20 .. 26 :: one page |
| Author |
Thread Statistics | Show CCP posts - 28 post(s) |
|
Oveur
   |
Posted - 2006.01.06 16:45:00 -
[211]
 Originally by: Nics
Be patient guys, CCP is fixing it.
But would be cool Oveur to have some news about why the mails take long to arrive.
SMTP Queue ?
Another problem ?
Fixing something about security preventing mail departures ?
... 
It's our SMTP queue, a lot of people are requesting new passwords and of course we're not equipped to spam a lot on such short notice 
Senior Producer
EVE Online
|
|
Cap'nCheeseinBeard
|
Posted - 2006.01.06 16:45:00 -
[212]
Originally by: Zoriander
Mail received. Good job CCP!
How long did you wait?
|
zepter
|
Posted - 2006.01.06 16:46:00 -
[213]
Originally by: Starfly
if the md5 hash db was taken all passwords should have been reset, people can ***** weak passwords you know, and cpp isnt going to have a good way to know which passwords are going to be *****ed first so have to rest all...
I still have my money on people that logged in on the website, or eve during a small time windows. eg over christmas when maybe a hacker had got a machine on the eve network, hosting companys network etc..
Someone got an account they havent used for ages that was reset? Or someone that ALWAYS logs in both accounts at the same time that only had 1 reset?
to quelch some theories..
both of my accounts have the same password.
only the older (may 2003, new one is from 2004) one got changed.
the newer one is the one i use most often and the older one is almost never used without me using the newer one.
both accounts are tied to the same e-mail.
i don't use the same password on any other site.
i'm behind a router, i use kerio personal firewall, nod32 antivirus and ad-aware se personal. my windows is patched (including the latest patch now). i browse using firefox.
i did a scan with both nod32 and adaware and nothing came up.
|
ShadowGirl
|
Posted - 2006.01.06 16:46:00 -
[214]
Originally by: Starfly
if the md5 hash db was taken all passwords should have been reset, people can ***** weak passwords you know, and cpp isnt going to have a good way to know which passwords are going to be *****ed first so have to rest all...
I still have my money on people that logged in on the website, or eve during a small time windows. eg over christmas when maybe a hacker had got a machine on the eve network, hosting companys network etc..
Someone got an account they havent used for ages that was reset? Or someone that ALWAYS logs in both accounts at the same time that only had 1 reset?
Got 3 acc i use regualary 2 of them have been resset and thinking of it i used all 3 acc on another pc during hollidays a pc theres clearly not as safe as my own
|
DisposableHero MK1
|
Posted - 2006.01.06 16:46:00 -
[215]
Edited by: DisposableHero MK1 on 06/01/2006 16:47:03
Originally by: Kerushi
Originally by: DisposableHero MK1
It sounds like all the older accounts have been reset, those that are around 1year plus?
not really, my alt with no assets was reset and it has been around for something for 2 months
the account itself is older but with no old chars
But you just said your account was rest  and your account is older thanthe char? so it still sounds like all the people with old accounts have had there passwords reset.
Though i'm probably misreading what you said.
|
Li'ann
|
Posted - 2006.01.06 16:47:00 -
[216]
Originally by: Zoriander
Mail received. Good job CCP!
Did you receive it without retreiving it manually?
Still haven't dared to do so as it might add another couple hours of waiting...
|
0xygene
|
Posted - 2006.01.06 16:47:00 -
[217]
ok I agree about the loss of in game items reimbursmants etc.
However - what concerns me more is the fact that once an account is hacked . access to your real id is then readily available. cc details address etc is thus easily aquired.
Some information regarding this would be useful from ccp
|
|
Oveur
|
Posted - 2006.01.06 16:50:00 -
[218]
Originally by: End Yourself
just to clear some things up that are pretty obvious i think
not ALL accounts having their passwords reset were "hacked"
it has not been said by CCP that it was hacked client pcs at all
and also my 0.02 isk on client security regarding windows:
1. do NOT use admin or poweruser rights for daily work, user rights suffice and least priviledges is the key to a secure pc
2. do NOT use internet explorer or outlook(express)
3. shut down all unnecessary services(refer to http://www.ntsvcfg.de/ntsvcfg_eng.html or http://www.dingens.org/index.html.en for details)
4. do NOT use a personal firewall, they are crap and shutting down all the services is all you need, use a router to connect to the internet by any means if possible
5. keep windows and userspace programs(web browser, mail client, instant messenger, media player....) up to date
6. use ONE good automagically updating virus scanner. but don't feel like beeing on the safe side, those companies can never act, all they do is react and then it can allready be too late for you, only run programs you get from a trusted source -> refer to point 7
7. last but not least USE YOUR BRAIN!
and if your pc got compromised, be aware that you can't trust anything anymore, "cleaning" with whatever tool someone wants to sell you will NOT work -> REINSTALL
You are correct, far from all the accounts we reset were compromised. The resetting of the other accounts was the preventive measure taken.
Senior Producer
EVE Online
|
|
Rhaegar Targaryon
|
Posted - 2006.01.06 16:50:00 -
[219]
Originally by: DisposableHero MK1
It sounds like all the older accounts have been reset, those that are around 1year plus?
this guy seems to have a good point as my main which has been active since aug 03 has been reset. still no email though but i guess ccp are trying their best so be patient i reckon. i hate f@#<ing hackers. 
|
Mr Feltcher
|
Posted - 2006.01.06 16:50:00 -
[220]
I dont think they can use ure credit card details as not ALL the number is shown, only the last set of digits. Without the full number the card details are no good, is this correct ?? |
weeYin
|
Posted - 2006.01.06 16:51:00 -
[221]
likewise not my account someone elses im having to post from 1 is 2003 1 is not and yet still not received any email as far as i know it excepted my email but still nothing for over 2hrs i understand its prob busy but nay kinda updates and info wouldnt go a miss to keep us who are waiting informed instead as usual we gotta sit here like lemmings and hope that our accounts are ok and no problems with getting new passwords sorted |
0xygene
|
Posted - 2006.01.06 16:52:00 -
[222]
yeah you are quite correct the cc details are safe - however with identity theft on the increase they then have your name address dob etc all to hand.
|
Yulag
|
Posted - 2006.01.06 16:53:00 -
[223]
Originally by: Oveur
It's our SMTP queue, a lot of people are requesting new passwords and of course we're not equipped to spam a lot on such short notice
Care to give us an indication of when the last batch of e-mails 'has left the building'?
|
Olsen'Kra
|
Posted - 2006.01.06 16:53:00 -
[224]
Originally by: Li'ann
Originally by: Zoriander
Mail received. Good job CCP!
Did you receive it without retreiving it manually?
Still haven't dared to do so as it might add another couple hours of waiting...
I requested mine manually, actually twice (once before the news hit and once about an hour later), one took two hours the second took 1 hr and both arrived at same time. I received no email from ccp about the breach specifically.
|
Kerushi
|
Posted - 2006.01.06 16:53:00 -
[225]
Oveur,
just to make sure, our credit cards details aren`t stored on the servers and are being handled by a 3rd party right?
otherwise i`m happy with the take down of the cluster to prevent a worse case scenario, good work 
________________
|
Mr Feltcher
|
Posted - 2006.01.06 17:04:00 -
[226]
question on behalf of someone who cant log in due to pw reset :
What should you do IF the account admin section of the webby wont accept your email address????
|
zepter
|
Posted - 2006.01.06 17:05:00 -
[227]
Edited by: zepter on 06/01/2006 17:06:36
Originally by: elFarto
Originally by: Oveur
You are correct, far from all the accounts we reset were compromised. The resetting of the other accounts was the preventive measure taken.
What was the reason for resetting the password of accounts that hadn't been compromised? Weak password?
Regards
elFarto
both of my accounts have the same password as u can read in my post above. one was reset while the other wasn't..
|
elFarto
|
Posted - 2006.01.06 17:06:00 -
[228]
Edited by: elFarto on 06/01/2006 17:06:57
meh, too late |
Biggess Boobess
|
Posted - 2006.01.06 17:06:00 -
[229]
Using a mates account to post here as I can't even make a post with my accounts. All 3 of my accounts have had their passwords reset, and I've had no email at all. I hope I can still get access to my accounts and play. 
|
Hobbesmaster
|
Posted - 2006.01.06 17:06:00 -
[230]
Originally by: Meelo
Refering to point 2). I use Firefox for browsing, however, I've yet to find another mail-inbox (like Outlook Express) to use as my email. (Not hotmail/Gmail etc) Could you recommend one?
Thunderbird should do the trick.
|
Avon
|
Posted - 2006.01.06 17:06:00 -
[231]
Originally by: Meelo
Refering to point 2). I use Firefox for browsing, however, I've yet to find another mail-inbox (like Outlook Express) to use as my email. (Not hotmail/Gmail etc) Could you recommend one?
Try the mail client from the firefox guys - thunderbird or something like that.
______________________________________________
The Battleships is not and should not be a solo pwnmobile - Oveur |
Exploding Legs
|
Posted - 2006.01.06 17:06:00 -
[232]
Originally by: Halada
I will rephrase what happened here...
Because 57 idiots somehow gave out their password, 10 000 and more players were locked for 4 hours (and still going) instead of the usual one...
What makes it more frustrating is that more idiots are spamming the frickin forum with questions which are ALREADY ANSWERED IN THE STICKIES...
Thats an intelligent reply. My main is compromised and i have never ever given the account details to anyone. So zip it.
I know 4 other ppl in my mains corp that are compromised too. Maybe even more. Maybe some ppl dont like us :/ Tho on 2 of the persons compromised it was their alt chars.
Still no mail tho. But good work trying to clear this up.
|
|
Oveur
|
Posted - 2006.01.06 17:07:00 -
[233]
Originally by: Exploding Legs
Originally by: Halada
I will rephrase what happened here...
Because 57 idiots somehow gave out their password, 10 000 and more players were locked for 4 hours (and still going) instead of the usual one...
What makes it more frustrating is that more idiots are spamming the frickin forum with questions which are ALREADY ANSWERED IN THE STICKIES...
Thats an intelligent reply. My main is compromised and i have never ever given the account details to anyone. So zip it.
I know 4 other ppl in my mains corp that are compromised too. Maybe even more. Maybe some ppl dont like us :/ Tho on 2 of the persons compromised it was their alt chars.
Still no mail tho. But good work trying to clear this up.
Like I replied earlier, the fact that your password was reset does not mean you were compromised, it was a preventive measure.
Senior Producer
EVE Online
|
|
Stab Wound
|
Posted - 2006.01.06 17:07:00 -
[234]
Originally by: Junry Loka
I received the mail but when I try to follow the link, I have this message:
Reset password
Your password could not be reset. The url you followed is either incorrect, has been used or has expired.
It is because I have reseted it manually?
getting the same
and this character CTD's as soon as i enter game ;/
|
|
Oveur
|
Posted - 2006.01.06 17:07:00 -
[235]
Originally by: The Enlightened
Why was the decision made to reset somany accounts? It was quite forseeable that the mailserver would crap out in some apocalyptic way when every EVE player and their uncle and cousin would start spamming the 'forgot your password' button wasn't it?
How is the mailserver doing btw? Is it making any weird noises? Hold your ear upto it does it whisper 'kill...meee'?
Should we be worried about not making a 135487 character 'common' (ie easy to remember) password now? Has the threat been evaded now?
Finally: When does the public castration of the purp take place?
Because when you are dealing with account compromise you take the safer route and reset far more than you have to, just to be sure. A customer having to wait for some hours to recieve his email is a far better fate than seeing his account abused when he logs in one fine day.
No strange whispers yet from the server but it is breathing quite a lot of hot air.
You should not be worried, but easy passwords are easily hackable password, whether you use them for EVE or for your bank account.
Senior Producer
EVE Online
|
|
Nee'kita Frist
|
Posted - 2006.01.06 17:08:00 -
[236]
Meelo, have you not checked out Thunderbird by Mozilla as well?
|
Domalag
|
Posted - 2006.01.06 17:09:00 -
[237]
Will it be any faster to retreive the password from the website or should i just wait for the original mail?
|
Kerushi
|
Posted - 2006.01.06 17:09:00 -
[238]
better safe then sorry, tho it was abit annoying
________________
|
Zanek Kraiger
|
Posted - 2006.01.06 17:09:00 -
[239]
Im PAST reasoning at this point. That CCP found out that hacking was involved is good points on yah. THAT YOU HAVNT THE SENSE TO SEND OUT PASSWORD RESETS TO THOS 57 ACCOUNTS BEFORE YOU RESTARTED THE SERVER IS INEXCUSABLE!!
|
DisposableHero MK1
|
Posted - 2006.01.06 17:10:00 -
[240]
Originally by: Meelo
Refering to point 2). I use Firefox for browsing, however, I've yet to find another mail-inbox (like Outlook Express) to use as my email. (Not hotmail/Gmail etc) Could you recommend one?
Thunderbird maybe made by the same company as firefox.
|
| |
|
| Pages: 1 2 3 4 5 6 7 [8] 9 10 11 12 13 14 15 16 17 18 19 20 .. 26 :: one page |
| First page | Previous page | Next page | Last page |