The Powder Toy

Abuse of multiple accounts

  • Lockheedmartin     10th Feb 2011 Moderator 0 Permalink
    @rikudousennin
    Yes report it to him. Also passwords are encrypted, so there is no way of retrieving it.
  • Cr15py     10th Feb 2011 Member 0 Permalink
    Lockheedmartin
    You can however retrieve the hash and try to crack it... also, you can retrieve the password in raw text can't you? Like... if Simon has the password of could contact the person that has it we could technically retrieve the master key(or the owner of the database could) and decrypt the password...
  • Simon     10th Feb 2011 Administrator 0 Permalink
    @TheRazorsEdge
    He was just an example or someone who frequently visits the forum.
  • Neospector     10th Feb 2011 Member 0 Permalink

    Cr15py:

    Lockheedmartin
    You can however retrieve the hash and try to crack it... also, you can retrieve the password in raw text can't you? Like... if Simon has the password of could contact the person that has it we could technically retrieve the master key(or the owner of the database could) and decrypt the password...

    My, someone's...paranoid. More then me, even. That deserve a prize. You'll get it soon...or will you? >:D
  • Cr15py     10th Feb 2011 Member 0 Permalink
    Neospector
    How is that paranoia? I was correcting what he said...
  • Neospector     10th Feb 2011 Member 0 Permalink
    @Cr15py
    Just sounded like it. It was like saying "Simon has the ability to steal all our passwords"
  • Lockheedmartin     10th Feb 2011 Moderator 0 Permalink
    @Neospector
    Wrong person in the quote. Your paranoid now.
    @Cr15py
    No, MD5 is a really nearly impossible hash. There is no master key etc. PHP hashes it as a function and stores it. The only way is brute force.. but I doubt they used a simple word for it. Try decrypting this:
    1aae4f5eb740067d22088604cd0dc189
    More than likely it's hashed a few more times and extra salt added:
    8b9f85ccfcc248daac6c454ec87570b9c526cd2c
    That's been through MD5 5 times and SHA1 once. Impossible to decrypt. Then it's store in the table, thus you can get the encrypted form, but it won;t do you any good.
  • Neospector     10th Feb 2011 Member 0 Permalink

    Lockheedmartin:

    @Neospector
    Wrong person in the quote. Your paranoid now.

    I wasn't before?
  • Deminem2     10th Feb 2011 Member 0 Permalink
    Could you please unban my account "Deminem"?
    I know I broke the rules because I had multiple accounts (I think 2 or 3). And I voted up one of my saves. It was stupid and I'm sorry for that. But I saved lots of creations, which I would like to access again.

    Sorry for bad English and sorry if this is the wrong thread.
  • JoJoBond     10th Feb 2011 Member 0 Permalink
You need to login before you can post replies