Graal Forums  

Go Back   Graal Forums > General Forums > Graal Main Forum (English)
FAQ Members List Calendar Search Today's Posts Mark Forums Read

Closed Thread
 
Thread Tools Search this Thread Display Modes
  #91  
Old 11-08-2005, 05:17 AM
busyrobot busyrobot is offline
Registered User
busyrobot's Avatar
Join Date: Dec 2002
Posts: 978
busyrobot is on a distinguished road
I think it would be prudent to add a security check at log in, that ran on the server. Basically, if one IP and/or client app ID logs in to 3 or more accounts within a short interval, the server would scan the three accessed accounts for that IP in their log histories. If the IP is new, then it should email staff of a possible abuse. It wouldn't have taken staff very long to realize the activity (going from many to no items in short time of play) was more than a little suspicious.

Also, it should be very easy for the server to recognize when one IP address is attempting and failing to log into multiple different accounts. That should be an easy red flag to raise.

It is not really graal's responsibility - graal security verified the correct account/passwords afterall, and safeguarding the password is the user's responsibility - but it would be a nice added level of security, and discourage people from attempting phishing in the future.
__________________
Woodsman Padren Talisan Sagesun (Dustari)
Graal Kingdoms

"Uh, Professor, are we even allowed in the Forbidden Zone?"
"Why, of course! It's just a name, like the Death Zone or the Zone of No Return. All the zones have names like that in the Galaxy of Terror."
  #92  
Old 11-08-2005, 05:46 AM
Googi Googi is offline
A Serious Epidemic
Googi's Avatar
Join Date: Oct 2001
Location: Canada
Posts: 18,866
Googi has much to be proud ofGoogi has much to be proud ofGoogi has much to be proud ofGoogi has much to be proud ofGoogi has much to be proud ofGoogi has much to be proud of
Send a message via AIM to Googi
The problem here wasn't that the staff didn't find out about it. The problem was realized pretty quickly.
__________________
  #93  
Old 11-08-2005, 06:00 AM
ViCtOrEhEhEh ViCtOrEhEhEh is offline
Super Villain
Join Date: Oct 2003
Location: New York City
Posts: 477
ViCtOrEhEhEh is an unknown quantity at this point
Send a message via AIM to ViCtOrEhEhEh
Quote:
Originally Posted by Lyndzey
Velox has already contacted Paypal and is attempting to contact the two people who he stole money from.
Yea someone suggested that to him in gscript, Napo I think.
__________________

*Contacts*
E-Mail: [email protected]
AIM: Albo Playah
  #94  
Old 11-08-2005, 06:04 AM
LilNiglet LilNiglet is offline
stop all the downloadin'
Join Date: Jun 2001
Posts: 3,178
LilNiglet is on a distinguished road
Quote:
Originally Posted by Lyndzey
Velox has already contacted Paypal and is attempting to contact the two people who he stole money from.
He already spoke to me, and I've informed PayPal of the situation
  #95  
Old 11-08-2005, 06:38 AM
Mykel Mykel is offline
:o
Mykel's Avatar
Join Date: May 2002
Location: Canton, Ohio.
Posts: 5,526
Mykel has a spectacular aura about
Send a message via AIM to Mykel Send a message via MSN to Mykel
Quote:
Originally Posted by Splke
Why are you always such a douche?

~

Velox eh? I thought he was kindof uh.. cool, ish. Glad I don't sign up for every "graal" related website like the rest of you tards.
It had nothing to do with people signing up.
__________________
(Married to Skyld)
  #96  
Old 11-08-2005, 06:53 AM
napo_p2p napo_p2p is offline
oh snaps
napo_p2p's Avatar
Join Date: Sep 2003
Location: Pismo Beach, California
Posts: 2,118
napo_p2p has a spectacular aura aboutnapo_p2p has a spectacular aura about
Send a message via AIM to napo_p2p Send a message via MSN to napo_p2p
Quote:
Originally Posted by Mykel
It had nothing to do with people signing up.
People had to sign up for graalians.com...

And Velox was (is) a smart one. He even had attempted tries logged. Even if you didn't use your normal password, but you tried to log in with it by force of habit, he was able to use that too.
__________________
Scito hoc super omnia.
Haec vita est tua una sola.
Dum vita superest, utere maxime quoque puncto, momento, et hora quae habes.
Tempus neminem non manet.
Noli manere tempus.
Carpe Diem

Seize the Day.
  #97  
Old 11-08-2005, 01:39 PM
xAndrewx xAndrewx is offline
Registered User
xAndrewx's Avatar
Join Date: Sep 2004
Posts: 5,260
xAndrewx has much to be proud ofxAndrewx has much to be proud ofxAndrewx has much to be proud ofxAndrewx has much to be proud ofxAndrewx has much to be proud ofxAndrewx has much to be proud ofxAndrewx has much to be proud of
Quote:
Originally Posted by Splke
Why are you always such a douche?

~

Velox eh? I thought he was kindof uh.. cool, ish. Glad I don't sign up for every "graal" related website like the rest of you tards.
You're the 'douche' for not reading the full post[s].
__________________
  #98  
Old 11-08-2005, 01:42 PM
Galdor Galdor is offline
░▒▓██▓▒░
Galdor's Avatar
Join Date: Feb 2004
Posts: 2,434
Galdor has a reputation beyond reputeGaldor has a reputation beyond reputeGaldor has a reputation beyond reputeGaldor has a reputation beyond reputeGaldor has a reputation beyond reputeGaldor has a reputation beyond reputeGaldor has a reputation beyond reputeGaldor has a reputation beyond repute
the perfect graal crime
__________________
Links
Draenin's Villains
Draenin's Quests

My Albums
Quote:
Originally Posted by Unixmad
This forums is going worst each day.
  #99  
Old 11-08-2005, 04:09 PM
Brad Brad is offline
Rat...
Brad's Avatar
Join Date: Jan 2002
Location: PA, USA
Posts: 10,955
Brad has a spectacular aura about
Send a message via AIM to Brad Send a message via Yahoo to Brad
Quote:
Originally Posted by James205
I'm very sorry for the incident and I had no idea of any of this. I am the host of graalians.com, Velox came to me about a good idea for a graal site and I offered him hosting. I had not idea he put a script within the site to get passwords and eventually use it for illegal actions. The site is shut down, if cleaned up it may go back up again.

That's a big MAY.

And in no way was I related to the issue, i'm going to stress that.

lemme take over the site so i can steal gralets
__________________

Brad.
2k14lyf
Forum idiots shall rule once more.


Quote:
Originally Posted by unixmad
Forums without brad will have been sad
  #100  
Old 11-08-2005, 04:29 PM
Minoc Minoc is offline
Registered User
Minoc's Avatar
Join Date: Sep 2001
Posts: 4,385
Minoc is a splendid one to beholdMinoc is a splendid one to beholdMinoc is a splendid one to beholdMinoc is a splendid one to beholdMinoc is a splendid one to behold
Quote:
Originally Posted by Brad
man you gotta admit thats one sweet plan
I highly doubt that was his original plan.
  #101  
Old 11-08-2005, 04:32 PM
LilNiglet LilNiglet is offline
stop all the downloadin'
Join Date: Jun 2001
Posts: 3,178
LilNiglet is on a distinguished road
Quote:
Originally Posted by VulcanP2P
Kamuii is right, I think, the responsibility to contact PayPal belongs to the victim of theft, not Linux Cyberjoueurs. Velox has already returned the money as Lyndzey said and it is Trooper and Sage's choice whether or not they want to try to press charges.

Don't confuse this with a statement from GraalOnline Staff. This is just my guess based on what I know.
My name is Tupper. And I have yet to recieve my money.
  #102  
Old 11-08-2005, 04:37 PM
syltburk syltburk is offline
shutup ctrl+s
syltburk's Avatar
Join Date: Oct 2001
Location: Sweden, Stockholm
Posts: 3,018
syltburk is an unknown quantity at this point
Send a message via ICQ to syltburk Send a message via AIM to syltburk Send a message via Yahoo to syltburk
Well planed mission, but the bad boyz always get caught cept me .
__________________
  #103  
Old 11-08-2005, 07:11 PM
Fox1545 Fox1545 is offline
Registered User
Join Date: Jul 2004
Posts: 78
Fox1545 is on a distinguished road
Quote:
Originally Posted by James205
The site is shut down, if cleaned up it may go back up again.

That's a big MAY.
If there is popular demand and someone can hack the relevant nameservers to work with that, I offer hosting on our server. Before you flame us for being less trustworthy for Velox, recall that we have members of the Graal administration among our ranks!
To reduce the chance of something like this happening again, we can probably set up live access to the site source.

Quote:
Originally Posted by syltburk
Well planed mission, but the bad boyz always get caught cept me .
Oh, it is just that no one cares about your retardedness because it is not remotely exciting.
  #104  
Old 11-08-2005, 07:39 PM
Aknts Aknts is offline
Level Designer
Aknts's Avatar
Join Date: Apr 2001
Location: USofA
Posts: 3,340
Aknts will become famous soon enough
Send a message via AIM to Aknts
All you people saying what Velox did was cool, smart and such might get banned for saying so.
__________________
  #105  
Old 11-08-2005, 07:46 PM
Tipps Tipps is offline
Giver
Tipps's Avatar
Join Date: Oct 2005
Posts: 44
Tipps is on a distinguished road
Send a message via AIM to Tipps
Umm, I highly doubt anyone is going to get banned for saying that hacking is cool -,-
Closed Thread

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT +2. The time now is 05:20 PM.


Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2022, vBulletin Solutions Inc.
Copyright (C) 1998-2019 Toonslab All Rights Reserved.