Jump to content
xisto Community

rvalkass

Members
  • Content Count

    3,403
  • Joined

  • Last visited

  • Days Won

    3

Everything posted by rvalkass

  1. However long it would take, we have established that it is not all that long. What is considered by many to be a secure password is, in fact, not very secure at all. People use passwords like that for online banking, their emails, and all sorts of other incredibly important accounts. If someone is determined enough, they don't need long to crack that password. A password only really needs to be strong enough so that, when it is finally inevitably cracked, the information/power/access the cracker gets is pointless and of no use to them. If a password will take a thousand years to crack, by the time that has been done, the password would be of no use to the cracker. I counted it and calculated it before I put the comma between the two lines Even without punctuation and numbers, even with only lowercase letters, a passphrase is a much better bet. A 20 character all-lowercase password is 1,000 times better (literally!) than a 12 character password using punctuation, uppercase, lowercase, etc. Punctuation and numbers are only included to satisfy those signup forms that require them. If the entire database was compromised, the hacker would have all the information anyway. If, however, they only had usernames and passwords, then I would hope the creator of the site had used salted one-way encryption to store the passwords. Unless they are salted. The rainbow tables which store all possible hashes, and the passwords which create them, have unsalted hashes. What you need to do is hash something like "74gfbv94372bv03864" + "password". That way, a rainbox lookup table has to be created solely for your site, which takes a colossal amount of time, and isn't worth the effort. Unfortunately my keyboard doesn't feature keys for characters like ³, ², µ and ». Using them in a password would be great, but looking them up in a character table on the screen would be a bit obvious! Sometimes they do. Some websites stipulate a password must contain lowercase, uppercase, numerals and punctuation. Some still say it must all be lowercase. Some set the length. They have no reason to do any of this, but they do it anyway.
  2. Only Microsoft Windows from 95 upwards by the looks of it. Another win for Linux! Although, I guess you could run it under WINE if you want Same caution as with all emails. According to Symantec it has to be manually downloaded and installed, so just be your usual wary self and don't download random stuff. It's not specific to Google Apps, but I'm surprised they're not filtering it out. Fairly widespread according to Symantec.
  3. You can reset your hosting account password yourself by visiting https://support.xisto.com/ Just log in with your forum username and password, and choose the option to reset your hosting account password. Then it gets done instantly and automatically, rather than waiting for someone to do it for you A theory I advocate, rather than passwords is passphrases. Most software used to guess passwords will cycle through common patterns, dictionary words, etc. However, even a password like g"1R%v can be guessed by software fairly quickly by cycling through every possible character in every possible location. Now that graphics cards are being used to do this, the time taken to crack a password has dropped dramatically. However, consider the following passphrase: First in my class here at M.I.T., Got skills, I'm a Champion of DND That contains a mixture of uppercase and lowercase characters, and punctuation. You can always tag a number on the end if you have to. It is also incredibly easy to remember (as long as you are a Weird Al fan ). Now look at how long each one would take to crack: The first password has 128 possible characters per place, and is 14 characters long. 4.40x1012 possibilities. At 200,000 guesses per second, that would take an absolute maximum of 254 days to guess. Two computers takes that down to half. The second passphrase, even if it was all in lowercase, would have 26 possible characters, and is 66 characters long. At our best estimates the Sun would have exploded long before it was guessed Passphrases, to me, make much more sense than passwords. They are far easier to remember, and are much more secure. Also, when typing words you type much quicker than typing random symbols. This helps stop people reading your password over your shoulder as you type. The problem with password managers is their encryption. If the encryption algorithm is flawed then you may as well not bother with the password in the first place. I even once saw a password manager that stored the passwords in a plaintext file in the following format: Xisto.com|username|password
  4. This would be no problem whatsoever. Most CMS software have an inbuilt backup function, which is normally preferable to a manual backup. Take a look through the admin panel for a way to download a backup file, and save that to your PC. Then, on your local copy of the CMS, restore that backup file, and all the data from your Xisto site will appear on your local site. If there is no in-built backup system in the software you are using (shame on the developers!) then you can repeat the process yourself. It does exactly the same, but requires more mouse clicks Open your Xisto cPanel Log in with your cPanel login details Scroll down to the Database section, and click on the phpMyAdmin logo On the left hand side, click the relevant database you want to back up At the top of the screen, hit the Export tab Tick "Add DROP TABLE / VIEW / PROCEDURE / FUNCTION" Tick "Save as file" Hit Go, and save the file somewhere on your hard drive Then open up phpMyAdmin on your local machine (download and install phpMyAdmin if you haven't already) Click the database you're using on the left Click the Import tab this time Choose the file and click Go, and your data will be added to your local database If you need help with those instructions, or downloading/setting up phpMyAdmin then feel free to ask. I seem to remember phpMyAdmin on Windows can be a little bit of a pain to initially configure sometimes (another win for Linux!) but that may have changed.
  5. Not a problem - I made exactly the same mistake with my account when I first got it :)Topic is resolved.Please PM any moderator to continue this discussion. Until then, this topic is closed.
  6. The files should not be any different, so it shouldn't matter. As you rightly say, most of the data is stored in the database and retrieved dynamically as the pages are loaded. However, with all CMS there will be a configuration file somewhere which contains important settings which cannot be stored in the database (like information for connecting to the database). These files will differ from your local copy and the copy on your hosting account, so will need to be maintained separately. If you are confident manually editing the configuration file in a text editor, just take a copy of it as it is, change it to fit your hosting account, and upload that copy with the rest of the files.I have a sum total of zero experience with Truppentool, but I assume it is similar - there will be a configuration file which needs to be changed to reflect server-specific settings.
  7. The username is not webmaster but webmaster@travstatesmen.trap17.com if I remember correctly. When it states the username is OK, it means it follows the right format and was accepted by the server, not that it actually exists.
  8. For 6"x4" paper: http://forums.xisto.com/no_longer_exists/ For A4 paper: http://forums.xisto.com/no_longer_exists/=# Both have free next day delivery, and are high quality glossy paper.
  9. That could be one of three things: Memory problems - check the RAM is seated correctly, and not damaged. It may need replacing. Repalcement motherboard may be required. Video card damaged or not seated correctly. Not knowing what PC you have, what motherboard it uses and which BIOS it uses, I can't say which, if any, of the possible faults above could be the one.
  10. Email notifications are quite a popular idea, but it would encourage people to leave and only return when they got the email, rather than keep checking back every couple of days. You could pretty much kill the community overnight. I can't see many people using that on their sites. Personally, I think it would worry my visitors if they saw a notice on my site saying it would only be there for X days You can already buy credits if you really need to: http://forums.xisto.com/topic/572-mycents/ Problems with compatibility, and people to maintain them. It would take a lot of work to make toolbars for Firefox, Opera, Internet Explorer, Safari, Konqueror, etc. that worked on Linux, Mac and Windows, and would require a lot of people to look after them. It would also discourage people from visiting to check their credits, and cause a massive increase in bandwidth as the system kept checking. Could be seen as biased or opinionated. There would have to be some form of definition of "interesting" or whatever, and that would be very difficult to write and follow. A good idea. I know many members already run their own competitions for credits every so often, but some form of forum-wide, forum-run competition for credits on a regular basis could be good. It would certainly encourage people to participate and return to the forums. The only problem I can see is spam. People could spam post until they get past the border and into the next rank, to earn the extra credits. If it could be coded so that credits were deducted if you dropped a rank too, then it would work, and really encourage people to post more. Could be difficult to code, and would encourage lots of spam by people on the same day, to earn more credits for each post.
  11. Does the file includes/defines.php actually exist? Did it get uploaded? Sometimes FTP software fails to upload a file or two, and it can be worth checking that every folder has the right files in it.If it does exist, what are the permissions on that file? Make sure that PHP has read access to the file, otherwise it can report that it doesn't exist.
  12. That would be illegal. Gaining access to a computer or network in that way will land you in court, facing hefty fines and often a jail sentence. Not worth it for accessing a few websites. Much better advice. If a website is blocked then there is usually a good reason for it. If you have a legitimate reason for accessing a certain blocked website, ask the IT department to unblock it for you, and they should have no problems doing so.
  13. It appears that Mozilla are going to push Firefox 2 users to upgrade to version 3. You're gonna get a message appearing telling you to upgrade, although there will be an option to stay with version 2. Just remember that, come December, version 2 will be unsupported and you'll have to upgrade anyway. The idea is to push both users, and extension/theme writers, to use version 3.
  14. Erm, no. Kubuntu is Ubuntu but with a KDE front end rather than Gnome. Xubuntu, however, runs the lighter Xfce front end, and is therefore better suited to older or less powerful hardware (although none of them are at all demanding).
  15. http://www.ebuyer.com/store/Components/cat/Graphics-Cards-Nvidia It's only a 256MB card though, and the Zotac has a higher core clock speed. However, I agree with you that many reviews say the 8800 series is better than the 9600 series, so I'll certainly look into the card I linked above. The prices of everything else have dropped, so I can afford that little bit extra on the graphics. I am building it myself, if that's what you mean by DIY. Hence all this discussion of the components I'm probably not going to overclock the system - too much heat, and I'm aiming to be as quiet as possible. As for hard core games - I'm running Linux Depending on how far WINE gets with getting games to run, hard core games are not likely. I still have my laptop, but if I find that I don't really need it, then I may well sell it to another student
  16. By SC2, I assume you mean StarCraft 2? If so, no-one can really help, as a quick trip to their website reveals: If you really want to buy a graphics card, you'll just have to buy the best card you can afford, and hope it's good enough. Until you know the actual requirements, it is somewhat hard to suggest a particular card.
  17. It was even more stupid than that. The guy's name was Mike Rowe, and he made software, so he bought the domain MikeRoweSoft.com. Despite it looking nothing like Microsoft, and clearly having no connection, Microsoft took the poor guy to court over it.
  18. It may well be a number from an African nation. Country codes starting with 2 are for Africa (the first 0 representing an international number). Code 240 is Equatorial Guinea. 20 is Egypt, and 204 could be a region within Egypt. Automated computer dialling. If it is costing you money (you have to pay to receive calls...?) then contact your phone company and request they bar the number from phoning you. If they can't, ask them why not. If it comes to it, bar all international calls from getting to your phone, although that may get annoying if you make a lot of international calls yourself. If you are really being affected this badly by it, contact the police. On this level it counts as harrassment, and the police will likely be able to do something about it. You are repeatedly called because the system hasn't played whatever message it wants to play to you, or hasn't connected you to someone to speak to. The system then never takes you off the list of numbers to call, so keeps calling you over and over again until it works. Anyone reminded of this... http://forums.xisto.com/no_longer_exists/ We got plenty of calls we didn't want, silent calls, marketing calls... Everything. The best thing to do, if you manage to speak to a real person, is to demand to know where they got your number from. If they can't tell you, then they're auto-dialling, which is illegal in most countries. If they do tell you, go after the company selling your data. In the UK we have the Telephone Preference Service which you can sign up to to stop unsolicited calls. Most countries have some similar scheme you can sign up to. We also have Ofcom, who take reports on nuisance calls, and go after the people making them, with all sorts of fines/prison/puishments. Again, most countries have a telecoms regulator you can contact for help or advice, or to report the calls.
  19. I disagree. Quad core processors are much more expensive, and there is very little difference for the average user. Until 99% of desktop applications take advantage of the multiple cores, I still advocate spending your money on best dual core processor you can afford.
  20. Why the need to give away proprietary software though? Why can't you just distribute free (gratis and libre) software to those who cannot afford the ridiculously expensive proprietary software? That still allows people to develop the skills needed to work as professionals with these pieces of software, but without being locked into a proprietary system. "I know how we can drastically reduce crime!""How?" "Legalise everything!" Revoking laws on copyright and piracy would have no effect. Those who are bothered are already pirating software, and there is no need if free alternatives are available anyway. They didn't need to be criminals. No-one forced them to use Microsoft or Adobe software or whatever. Open-source, free alternatives are available, so there is no need for them to be software pirates.
  21. I have sent a PM containing your cPanel username.
  22. If you have forgotten your cPanel password, you can reset it at the following link: https://support.xisto.com/ Log in using your forum username and password, then follow the "Change your Cpanel Password" link. It will cost 10 hosting credits to change your cPanel password.
  23. I can't see myself ever actually needing 2 LAN ports - it's one of those features people always want, but never actually use I've generally considered ASUS to be fairly good in making their products work well with Linux, but you've made me look deeper into some reviews, and it appears that the P5Q series of boards are not particularly Linux-friendly (despite the fact they use Linux for the fast boot up feature). I've always liked ASUS stuff, so I'd rather stick with them if possible, but I shall certainly take a look at the board you suggested. I can get a 384MB 8800GS card for about the same price as the 9600GT I picked originally. Which one offers the best value for money, and best performance?
  24. I don't really want to start modifying my hardware like that. I like the security of the warranty, and changing the cooling system would probably void that The 8800GT is a very good card, but about twice as expensive over here (around £100 new). It seems there are a few available with larger, slower-spinning fans, so they are cooled well and are still comparatively quiet. It's also quite a long card, but looking at the motherboard, that shouldn't be a problem. Actually, now you mention it, the whirring noise on the current desktop PC in my house sounds more like someone drilling into masonry when it spins up That really is quite annoying! I'm gonna be using this PC at University, and the accommodation is not exactly spacious. I tend to leave my PC on all day, and in my accommodation that could get a bit annoying if it is too loud. If it comes down to it, I'd pick performance over a slight increase in noise - I'd rather have a louder PC that I can use than a quiet PC I can't. As far as the graphics card is concerned, it will likely be the noisiest component of the PC, so I want to do my best to minimise the noise from it. If I do get a fanless graphics card then I will need to take a serious look at the airflow to make sure I don't start frying things. The Coolermaster 690 was a case I looked at to start with, and it is an excellent case, but I eventually decided I liked the gloss black and silver look of the Antec Solo more.
  25. I'm hoping this PC will last me quite a while, and I need the card to be able to run Compiz/Beryl and a few games. I'm gonna be running Linux on this machine, and nVidia cards have generally had better Linux support than ATI ones, which is why I'm mainly looking at nVidia. I've found the following silent cards at a variety of places: 512MB 8500GT - ?50 256MB 9500GT - ?42 512MB 8600GT - ?60 At the moment I'm leaning towards the 8600GT, which should be OK for what I need it to do. There is a 120mm fan in the back of the case, positioned directly above the expansion slots, so it should pull air straight over the card and keep it cool. It takes up two slots, but the heatsink is only covering a PCIe x1 slot, which I don't think I'd be using anyway.
×
×
  • Create New...

Important Information

Terms of Use | Privacy Policy | Guidelines | We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.