Remove the forced password change

This is a discussion on Remove the forced password change within the Suggestions board part of the D3scene related category; Hi, recently, I discovered, that I have to re-set my password: TH6SQCK.png What is the reasoning for this? As a ...

Results 1 to 9 of 9
  1. #1
    bellaPatricia's Avatar
    bellaPatricia is offline Legend



    Array
    Join Date
    Oct 2010
    Posts
    1,350
    Mentioned
    5 Post(s)
    Tagged
    0 Thread(s)
    Rep Power
    12
    Reputation
    1039

    Remove the forced password change

    Hi,

    recently, I discovered, that I have to re-set my password:
    TH6SQCK.png
    What is the reasoning for this?


    As a user, I can not remember a trillion passwords that may rotate or not.
    Of course it's bad practice to have the same password on different sites but it's probably a worse practice if I keep a book with all my passwords with myself that I need to update every now and then.



    If I don't want to keep a book with passwords or a password manager and I want to keep my old password, I'll probably add a number to my password and increment it every time.


    All I want to say is that password rotation is nothing but pain for the user.
    It's more interesting how you guys store my password, what hashing algorithm you use and if you salt it or not.

    (I didn't check if d3scene forces you to have a special complexity for your password which would be equally bad as password rotation)

    /rantoff


  2. #2
    Atex's Avatar
    Atex is offline Premium Member

    Array
    Join Date
    Aug 2012
    Posts
    1,747
    Mentioned
    8 Post(s)
    Tagged
    0 Thread(s)
    Rep Power
    9
    Reputation
    905
    Sure it may be annoying for someone who uses different passwords everywhere and knows his stuff about password security. But as inconvenient it is it's still useful as there are so fucking many people who don't understand to use different passwords everywhere so telling them to change their passwords occasionally should reduce the amount of same password used.

    this forced password change was implemented after d3scene was hacked
    Last edited by Atex; 09-23-2016 at 09:23 PM.
    INTERWEBZ.CC | Paypal, Paysafecard, BTC, Skrill
    My opinions are my own and do not necessarily reflect those of interwebz.

  3. #3
    Safou's Avatar
    Safou is offline '-'



    Array
    Join Date
    Jul 2012
    Location
    The Big Apple
    Posts
    2,507
    Mentioned
    38 Post(s)
    Tagged
    1 Thread(s)
    Rep Power
    9
    Reputation
    713
    I got it at one point too, and to be quite frank it was pretty annoying since it was on a day by day basis. Ended after maybe 2 weeks or so. Anyway, there's a lot of people using people's accounts to scam, so yea.

    Now to find a post of late, you have read to start this race!

  4. #4
    Matt's Avatar
    Matt is offline Bott


    Array
    Join Date
    Jun 2010
    Posts
    5,341
    Mentioned
    126 Post(s)
    Tagged
    1 Thread(s)
    Rep Power
    20
    Reputation
    2306
    Quote Originally Posted by Atex View Post
    Sure it may be annoying for someone who uses different passwords everywhere and knows his stuff about password security. But as inconvenient it is it's still useful as there are so fucking many people who don't understand to use different passwords everywhere so telling them to change their passwords occasionally should reduce the amount of same password used.

    this forced password change was implemented after d3scene was hacked
    This.

    I know it's annoying, but it is completely necessary. Telling people to change their passwords on three different threads and making an announcement about it just wasn't enough.

    @kent

  5. #5
    9e2934ef82 is offline Newbie
    Array
    Join Date
    Sep 2016
    Posts
    2
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Rep Power
    0
    Reputation
    0
    I'd recommend getting keepass

  6. #6
    Atex's Avatar
    Atex is offline Premium Member

    Array
    Join Date
    Aug 2012
    Posts
    1,747
    Mentioned
    8 Post(s)
    Tagged
    0 Thread(s)
    Rep Power
    9
    Reputation
    905
    Quote Originally Posted by 9e2934ef82 View Post
    I'd recommend getting keepass
    I second this
    INTERWEBZ.CC | Paypal, Paysafecard, BTC, Skrill
    My opinions are my own and do not necessarily reflect those of interwebz.

  7. #7
    bellaPatricia's Avatar
    bellaPatricia is offline Legend



    Array
    Join Date
    Oct 2010
    Posts
    1,350
    Mentioned
    5 Post(s)
    Tagged
    0 Thread(s)
    Rep Power
    12
    Reputation
    1039
    Quote Originally Posted by Matt View Post
    This.

    I know it's annoying, but it is completely necessary. Telling people to change their passwords on three different threads and making an announcement about it just wasn't enough.
    Was it a one time shot or does this happen every 90 days?


  8. #8
    Justin's Avatar
    Justin is offline Moderator from the Future



    Array
    Join Date
    Aug 2014
    Location
    Land of Mysteries
    Posts
    2,569
    Mentioned
    23 Post(s)
    Tagged
    0 Thread(s)
    Rep Power
    10
    Reputation
    1251
    Well, I guess the pass change is better than having some random guy running around on your account right.

  9. #9
    Matt's Avatar
    Matt is offline Bott


    Array
    Join Date
    Jun 2010
    Posts
    5,341
    Mentioned
    126 Post(s)
    Tagged
    1 Thread(s)
    Rep Power
    20
    Reputation
    2306
    Quote Originally Posted by bellaPatricia View Post
    Was it a one time shot or does this happen every 90 days?
    I wasn't the one who implemented it. @Tracky would be best to answer that one.

    @kent

Similar Threads

  1. [WTS] WTS Dota 2 Account (Email Change + Password + SAQ)
    By JohnathanWu in forum Accounts
    Replies: 6
    Last Post: 02-20-2012, 12:22 PM
  2. [WTS] WTS Dota 2 Account (Email Change + Password + SAQ)
    By JohnathanWu in forum CD-Keys
    Replies: 1
    Last Post: 02-20-2012, 12:21 PM
  3. Change password in steam without email?
    By Sk8terBoi. in forum Counter Strike forum
    Replies: 7
    Last Post: 06-18-2011, 06:15 PM
  4. [Windows][CMD]Change password!
    By Kaskame in forum Operating Systems
    Replies: 8
    Last Post: 12-17-2010, 11:15 PM
  5. [Guide]How to change your SQL Password!
    By cblt in forum Mu Guides
    Replies: 2
    Last Post: 12-24-2007, 11:26 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •