WHAT THE FUCK IS THIS? AN ECCIE DOPPELGANGER? ECCIE IN ANOTHER DIMENSION? DO WE TAKE THE RED PILL OR THE BLUE PILL? IS IT LIVE OR IS IT MEMOREX? IS THERE A SPOON? IS IT THE MATRIX?

[CG2014]

Quote:

Originally Posted by King MoMo

I signed in no problem and traveled back in time to December 2018

If people can log in, can they post?

I wouldn't be surprised if folks start logging in and posting ads there since that site is not under any of the restrictions that are currently on here:



no weekly ads, no weekend ads, no ISO, no bio pages, no showcases, no welcome ads.

[greenraven]

If you were able too sign in it means they got access to the sql database which i guarantees has our passwords in hashes which is encrypted so the database tries to match hashes not the actual password. Which means if you sign in they will have your real password it takes a long time to decrypt hashes in databases they usually use dictionary based brute forcing on the hashes so a strong password that is diffrent from your email password is a must

[CG2014]

In simple English please?

[Doug4343]

Thats why ive always used a vpn when connected to eccie and my email address cant be traced back to me. I know eccie collects my ip address. And if they stored that info someplace, like this database, the. They can connect your real world address and info. Probably sone deep web fuckers doing that now. Dump your real world info like ashley madison. Remeber that? 400 ministers and priests got exposed seeking pussy

[Billogoods]

The site will allow you to log in with any password. The operator assumes you will use your ECCIE password, since it is a copied site. Then, the username/password is recorded and they now have access to your ECCIE account...and, since most people use the same username/password combination on multiple sites, they can access those accounts, too.

[greenraven]

Basically passwords are stored encrypted in most sites so when a hacker uses sql injections too hack a site the passwords they get are scrambled aka encrypted.

So the way the site knows your password is correct is that it matches your hash password which is your encrypted password instead of matching your unencrypted password

For example if your password is balloon it is encrypted as 0000101010
So when you type your password in its gonna gave the same hash every time so it matches the 000100101 instead of your password balloon

So if a phishing site gets access to your hash and login info you can still log in with out them knowing your unencrypted password which is balloon all they know is 000100101 but now they know your unencrypted password since you typed it into the new databased from the phishing site.

Since balloon is a shitty password a basic brute force which is when a program guesses dictionary words in hash against your hash password it will find 00100101 [your hash password] when the program comes across balloon in the dictionary

[LargeBreastFan]

Hey, all the members who wanted their account deleted are there.

[CG2014]

Good thing I never logged into that site and
I have a different password for anything online that requires a password
and I change every passwords every month
and I never use the same password twice
not on any sites.
I have about 40 different passwords memorized
and every month I have to think of 40 new one to replace them.
All my passwords have use of the 26 alphabets
plus strange characters like %#^*@
and numbers
and are at least 8-10 characters long.

No, I do not use a password generator.

[greenraven]

Well it depends if that fake site is a copy or paste of this site with a blank database or if it actually has the sql database of this site on it.

I doubt this site is sql injectable btw but a pro could sql inject any sql database manually which would take weeks thats how they got the Ashley madison site database

[greenraven]

I just checked the site out im sure it does have access to the old sql database

[VeryClean]

Quote:

Originally Posted by CG2014

Good thing I never logged into that site and
I have a different password for anything online that requires a password
and I change every passwords every month
and I never use the same password twice
not on any sites.
I have about 40 different passwords memorized
and every month I have to think of 40 new one to replace them.
All my passwords have use of the 26 alphabets
plus strange characters like %#^*@
and numbers
and are at least 8-10 characters long.

No, I do not use a password generator.

Wow that's very impressive. I don't think I can make myself do all that memorizing every month.

[greenraven]

Im guessing this site could have or had a port open on the server a ftp or ssh port that could be bruteforced thats the only way im sure i dont think this site sql injectable

If a ports 45 is open or the ssh port i think its 21 or so i would have to check then it could be bruteforced with an hands off program that you could leave running for weeks. Those ports allow you to access the servers of this site

[mtabsw]

Quote:

Originally Posted by CG2014

I have about 40 different passwords memorized
and every month I have to think of 40 new one to replace them.
All my passwords have use of the 26 alphabets
plus strange characters like %#^*@
and numbers
and are at least 8-10 characters long.

No, I do not use a password generator.

You might try significant Phrases -
"QuickBrownFoxJumpedOverTheLaz yDog!!!" - trivial obviously, but if you use something that makes sense to you it's easier - for another example - mine would be "GuyWhoEnjoys&LivesForTheDrama " - but I do use VPN and other tricks.

[greenraven]

They actually use bruteforcing to guess bitcoin private keys which gives you access to the bitcoins it takes like millions of years to bruteforce one private key but they can guess against every wallet https://keys.lol/ is one of the sites that does it lol so your not really safe anywhere unless you do like bitcoin does and have like 100 number in your hashphrase which will take 20000 lifetimes too brute force unless you have a quantum computer

If someone ever makes a true quantum computer they could get billions of dollars in so many ways lmao

https://privatekeys.pw/bitcoin/keys/1 is another site

[FindumFuccemFleem]

Quote:

Originally Posted by VeryClean

Wow that's very impressive. I don't think I can make myself do all that memorizing every month.

Lol you believe that crap?
He has been banned multiple times (yearlong bans too) for not following simple rules
He ain't that careful