If you enjoy the forum please consider supporting it by signing up for a NES Membership The benefits pay for the membership many times over.
Be sure to enter the NES/MFS May Giveaway ***Canik METE SFX***
If you make a crazy long and secure PW you'll be as protected from this.
Short of a hacker actually infiltrating the innards.
Not sure why hackers are targeting individual NES members.
Seems like a lot of work just to send out some spam.
Could there be evil intentions?
Can we start filtering the IP addresses so nothing outside of NE gets in?
Can we start filtering the IP addresses so nothing outside of NE gets in?
So really what is to be gained by hacking an account?
They tried to hack me too, 199.127.226.150.
Not sure why they'd bother, I don't keep much money in my NES account
Probably in no rush since they don't even offer SSL for sign in.
it was just implemented.
I have been calling for that for years.
I even agreed to pay Derek part of the cost if there was one to upgrade and add that feature.
Let me know if I should throw some bucks for the effort if this was an added expense.
send him the cash. i'll take a 50% finder's fee btw.
If that feature cost extra money, I'll honor whatever amount I said. I just can't find that old thread.
you said fifty bucks. i read the thread yesterday.
Better would be to move the entire board to SSL (well...TLS) which would keep prying eyes out of the content unless people's employers are proxying the cert.
Costs resources, though. I have a board that offers SSL, but it gets a tiny tiny fraction of the traffic this place does.
The entire board is available via TLS, and as of today, approximately 35% of our traffic is going out via it.
I have left it up to the user for the time being, but default new individuals to SSL/TLS.
This will do absolutely nothing to stop the messages that this thread is about, however... and as long as you have a secure password, these messages are nothing to be concerned about.
Fantastiballs! Great stuff, thanks for the heads up, switching over my bookmark.
FYI - I forced TLS on my board but ran into problems with people's browsers whining about non-encrypted content from linked images and such. Some versions of some browsers seem to really have trouble with it. I wound up offering http again as a result.