[Discussion] Downtime and Server Compromise

Discussion of general topics related to the new version and its place in the world. Don't discuss new features, report bugs, ask for support, et cetera. Don't use this to spam for other boards or attack those boards!
Forum rules
Discussion of general topics related to the new release and its place in the world. Don't discuss new features, report bugs, ask for support, et cetera. Don't use this to spam for other boards or attack those boards!
Post Reply
bolverk
I've been banned
Posts: 280
Joined: Mon Feb 02, 2009 5:39 pm

Re: [Discussion] Downtime and Server Compromise

Post by bolverk » Wed Feb 11, 2009 3:10 pm

wGEric posted last night that they were having issues with the site, but working on it. Still basically unusable just now. Page loads are taking 2 -3 minutes if it doesn't timeout completely with sql error of too many connections.

nabeel_co
Registered User
Posts: 1
Joined: Wed Feb 11, 2009 11:27 pm

Re: [Discussion] Downtime and Server Compromise

Post by nabeel_co » Wed Feb 11, 2009 11:35 pm

So... My last login at phpbb.com was on Sun Jan 27, 2008 4:05 am. Was my password compromised? Was that using the MD5 encryption, or the more secure one?

When did phpbb.com start using the better encryption?

ToonArmy
Registered User
Posts: 335
Joined: Fri Mar 26, 2004 7:31 pm
Location: Bristol, UK
Contact:

Re: [Discussion] Downtime and Server Compromise

Post by ToonArmy » Thu Feb 12, 2009 12:00 am

nabeel_co wrote:So... My last login at phpbb.com was on Sun Jan 27, 2008 4:05 am. Was my password compromised? Was that using the MD5 encryption, or the more secure one?
Yes your password was compromised, having an account on phpbb.com would guarantee your password hash had been compromised. But your password would have been stored in the more secure hash so it should be less of an issue. However you should still change it.
Chris SmithBlogXMOOhlohArea51WikiNo support via PM/IM
Image

User avatar
Highway of Life
Registered User
Posts: 1399
Joined: Tue Feb 08, 2005 10:18 pm
Location: I'd love to change the World, but they won't give me the Source Code
Contact:

Re: [Discussion] Downtime and Server Compromise

Post by Highway of Life » Thu Feb 12, 2009 1:18 am

That was a very confusing reply, Chris. :|
Was my password compromised?
Short answer: Highly unlikely, but change it anyway.
Was that using the MD5 encryption, or the more secure one?
Based on your last login time, the more secure hash.
When did phpbb.com start using the better encryption?
When phpBB.com converted from phpBB2 to phpBB3 in March of 2007.
Image

Post Reply