SRB2 Message Board  

Go Back   SRB2 Message Board > Off-Topic > General Discussion

Reply
 
Thread Tools Search this Thread
Old 11-02-2013   #1
Fred
Retired
 
Fred's Avatar
Default Someone tried to... do something to my account?

So I just got up, and checked my e-mail, and I find three copies of the following in my inbox:

Quote:
Dear Neo Chaotikal,

You have requested to reset your password on SRB2 Message Board because you have forgotten your password. If you did not request this, please ignore it. It will expire and become useless in 24 hours time.

To reset your password, please visit the following page:
<snip>
Obviously I can't check who the culprit was, but maybe you can? Am I that prestigious of a target? Has this happened to someone else?
Fred is offline   Reply With Quote
Old 11-02-2013   #2
Terra
Needy child
 
Terra's Avatar
Default

Well, this never happened to me, but right now I think you should worry about changing both your E-Mail password and SRB2 MB password.
Terra is offline   Reply With Quote
Old 11-02-2013   #3
Fred
Retired
 
Fred's Avatar
Default

Anyone can request a password reset right here: http://mb.srb2.org/login.php?do=lostpw

The point is, you have to intentionally and specifically write an existing member's e-mail address for it to do anything, and even then you'd need to be able to peek in my e-mail inbox to take control of my one of my random forum accounts. I'm not sure if this was the work of a misguided human, a malicious human, or a particularly annoying bot. I'm putting it out there just in case.
Fred is offline   Reply With Quote
Old 11-02-2013   #4
Rob
Administrator
 
Rob's Avatar
Default

I'm surprised someone would pick your account over a staff member's, honestly.

I'll direct Alam or Logan to this and see if they can't check server logs to see who might've been trying this.
Rob is offline   Reply With Quote
Old 11-02-2013   #5
Torgo
Developer
 
Torgo's Avatar
Default

I was thinking that it could have possibly been a user with a similar name and used autocomplete or something, but I don't think there is another user that starts with Neo C. *shrug*
__________________
If you see any people named "Torgo" outside of SRB2, it isn't me. I also go by "TorgoRandomNumbers"
Torgo is offline   Reply With Quote
Old 11-02-2013   #6
Mystic
チェン!
Administrator
 
Mystic's Avatar
Default

I suspect Torgo is right on this one. Never attribute to malice what you can attribute to pure stupidity.
Mystic is offline   Reply With Quote
Old 11-03-2013   #7
Ricardo
Dead Guybrush in netgames
 
Ricardo's Avatar
Default

Quote:
Originally Posted by Torgo View Post
I was thinking that it could have possibly been a user with a similar name and used autocomplete or something, but I don't think there is another user that starts with Neo C. *shrug*
Regardless of there being a similar name or not, someone apparently typed Neo's e-mail three times to attempt to reset his password for some reason, so it certainly wasn't "an accident".

However, I suspect this may be a prank (Halloween and etc.). Really, there is no point in doing something like this if your intent is to do harm.
Ricardo is offline   Reply With Quote
Old 11-03-2013   #8
Torgo
Developer
 
Torgo's Avatar
Default

Oh, so you have to know the e-mail address to do a password reset? That is a bit more odd then. I *guess* there could have been a similar e-mail address, but it seems a little unlikely.

Is there a different screen that tries to send the password request to the e-mail associated to the name you tried to log in?
__________________
If you see any people named "Torgo" outside of SRB2, it isn't me. I also go by "TorgoRandomNumbers"

Last edited by Torgo; 11-03-2013 at 02:35 PM. Reason: The question should make a little more sense now.
Torgo is offline   Reply With Quote
Old 11-03-2013   #9
Monster Iestyn
Friendly Neighbour-Hood
Moderator
 
Monster Iestyn's Avatar
Default

...Well it's not exactly hard to find Neo's email actually, so I don't really think it was an "accident" much either.
__________________
My page stuffed full of MIDI goodness!
The Hitchhiker's Guide to the Robo-Hoodiverse
Timeline of Sonic Robo Blast History!

That's an uppercase i, not a lowercase L, for the record. Also, it's pronounced "Yes-tin".
Monster Iestyn is offline   Reply With Quote
Old 11-04-2013   #10
LoganA
Administrator
 
LoganA's Avatar
Default

Neo Chaotikal, can you give me the times and date of each lost password email you got?
__________________
Hacking Srb2 is fun, but hacking to cheat is just not cool nor fun
I reject your reality and substitute my own!

3DS FC 2707-1608-5037
LoganA is offline   Reply With Quote
Old 11-04-2013   #11
Fred
Retired
 
Fred's Avatar
Default

Code:
Date: Sat, 02 Nov 2013 08:44:59 +0000
Code:
Date: Sat, 02 Nov 2013 08:45:19 +0000
Code:
Date: Sat, 02 Nov 2013 08:49:08 +0000
Fred is offline   Reply With Quote
Old 11-09-2013   #12
LoganA
Administrator
 
LoganA's Avatar
Default

Code:
171.101.237.53 - - [02/Nov/2013:04:44:31 -0400] "GET /index.php HTTP/1.1" 200 13405 "http://mb.srb2.org/login.php?do=lostpw" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/30.0.1599.101 Safari/537.36"
171.101.237.53 - - [02/Nov/2013:04:44:58 -0400] "POST /login.php?do=emailpassword HTTP/1.1" 200 3939 "http://mb.srb2.org/login.php?do=lostpw" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/30.0.1599.101 Safari/537.36"
171.101.237.53 - - [02/Nov/2013:04:45:02 -0400] "GET /index.php HTTP/1.1" 200 13395 "http://mb.srb2.org/login.php?do=emailpassword" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/30.0.1599.101 Safari/537.36"
171.101.237.53 - - [02/Nov/2013:04:45:18 -0400] "POST /login.php?do=emailpassword HTTP/1.1" 200 3939 "http://mb.srb2.org/login.php?do=lostpw" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/30.0.1599.101 Safari/537.36"
171.101.237.53 - - [02/Nov/2013:04:45:23 -0400] "GET /index.php HTTP/1.1" 200 13410 "http://mb.srb2.org/login.php?do=emailpassword" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/30.0.1599.101 Safari/537.36"
171.101.237.53 - - [02/Nov/2013:04:48:47 -0400] "POST /login.php?do=emailpassword HTTP/1.1" 200 7861 "http://mb.srb2.org/login.php?do=lostpw" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/30.0.1599.101 Safari/537.36"
171.101.237.53 - - [02/Nov/2013:04:49:07 -0400] "POST /login.php?do=emailpassword HTTP/1.1" 200 3939 "http://mb.srb2.org/login.php?do=lostpw" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/30.0.1599.101 Safari/537.36"
171.101.237.53 - - [02/Nov/2013:04:49:12 -0400] "GET /index.php HTTP/1.1" 200 13370 "http://mb.srb2.org/login.php?do=emailpassword" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/30.0.1599.101 Safari/537.36"
__________________
Hacking Srb2 is fun, but hacking to cheat is just not cool nor fun
I reject your reality and substitute my own!

3DS FC 2707-1608-5037
LoganA is offline   Reply With Quote
Old 11-09-2013   #13
Jayoshi
Younger than SRB2
 
Jayoshi's Avatar
Default

Reminds me of another troll from Thailand that used to attack the smbx forums and MFGG.

So, who on this forum uses (or has used) 171.101.237.53, anyways?
__________________
dn ǝpᴉs sᴉɥʇ
Jayoshi is offline   Reply With Quote
Old 11-09-2013   #14
Monster Iestyn
Friendly Neighbour-Hood
Moderator
 
Monster Iestyn's Avatar
Default

As far as I can see, nobody at all whatsoever.
__________________
My page stuffed full of MIDI goodness!
The Hitchhiker's Guide to the Robo-Hoodiverse
Timeline of Sonic Robo Blast History!

That's an uppercase i, not a lowercase L, for the record. Also, it's pronounced "Yes-tin".
Monster Iestyn is offline   Reply With Quote
Old 11-09-2013   #15
Fred
Retired
 
Fred's Avatar
Default

Google cache throws up a match on the Master Server, though, game ID 90512. The plot thickens.
Fred is offline   Reply With Quote
Reply

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 11:41 AM.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2018, vBulletin Solutions, Inc.