Newgrounds.com — Everything, By Everyone.

At 7/12/09 09:13 AM, KaynSlamdyke wrote: The consensus is, like what has just happened with the latest mod to get slapped by this, that they got in through my email and had a password request confirmation through from NG. That wouldn't have saved me.

Ouch. Who was the last guy to get it?

I agree with CitricSquid on this 'levelling' of passwords. I must use about 5 different passwords for different 'levels' of security. Say for paypal I would use a password that sometimes I would struggle to remember, then there's passwords I use for websites with less danger, and if I somehow lost my password it wouldn't really matter.

I keep messing up while statements and I feel really stupid.

while(_root.leftwalls.hitTest(_x,_y,true)){
xspeed = -2;
}

While statements I write myself always end up freezing my computer. Any help?

I know, stupid.

Shouldn't that be an If statement?

At 7/12/09 12:05 PM, ImpendingRiot wrote: Shouldn't that be an If statement?

No?

And that will always evaluate to true, seeing as xspeed isn't directly going to change the hittest bounding box of the colliding object. You need to move the _x directly.

At 7/12/09 12:18 PM, KaynSlamdyke wrote:

At 7/12/09 12:05 PM, ImpendingRiot wrote: Shouldn't that be an If statement?

No?

And that will always evaluate to true, seeing as xspeed isn't directly going to change the hittest bounding box of the colliding object. You need to move the _x directly.

Whoops, haha. My bad, I just woke up.

And also I'm a horrible, horrible coder.

At 7/12/09 12:18 PM, KaynSlamdyke wrote: And that will always evaluate to true, seeing as xspeed isn't directly going to change the hittest bounding box of the colliding object. You need to move the _x directly.

Thanks. Now I see the problem.

At 7/12/09 09:13 AM, KaynSlamdyke wrote: The consensus is, like what has just happened with the latest mod to get slapped by this, that they got in through my email and had a password request confirmation through from NG. That wouldn't have saved me.

so then what could have saved you?

At 7/12/09 12:43 PM, fluffkomix wrote:

At 7/12/09 09:13 AM, KaynSlamdyke wrote: The consensus is, like what has just happened with the latest mod to get slapped by this, that they got in through my email and had a password request confirmation through from NG. That wouldn't have saved me.

so then what could have saved you?

Private email accounts. I assume that they got in through guessing his information, for example quite a few people have "What was your first school?" as their secret answer, so with some internet detective work - checking old bbs posts - you can quite easily find it out. If you have an email account that you don't anyone know exists, for example "citricsquid@gmail.com" could be my normal account then "notcitricsquid@gmail.com" might be my private that I only use for important things.

You're only as strong as your weakest point, any "good hacker" won't bother starting with the main place they're trying to end up, if they want your Newgrounds account they won't bother trying to guess your password, they'll consider the other things that connect to your Newgrounds account and work out the weakest one and go for that, which is normally email.

At 7/12/09 01:22 PM, citricsquid wrote:

"good hacker"

Since when is phishing hacking?

At 7/12/09 01:30 PM, Deadclever23 wrote:

At 7/12/09 01:22 PM, citricsquid wrote:

"good hacker"

Since when is phishing hacking?

Since always, and I don't think Kayn got phished. Citricsquid is making a legitimate point. The easiest emails to hack are those that have very important information in the adress. For example luisng@something.com. It already gives you his first name, and look what a surprise, a simple "luisng" search on google will show you his twitter with his full name, his steam account, on a website where he used his credit card, his youtube channel, etc. Hacking is a lot easier than people think, it's just that you don't see it so much because you'd need a real good reason to break the law and get someone's personal information.

How would finding some pages on him give you his password?
You would have to enter it in somewhere, probably a fake login page of some description.

It all falls under the perview of social engineering - the oft forgotton hacker art of actually asking someone for thier password through indirect means. Whether it's trying to fake thier identity by ripping all the information off of facebook, or simply guessing common things.

Less talk about this. We've lost DryIce and Mightypotato to this today as well

At 7/12/09 01:30 PM, Deadclever23 wrote: Since when is phishing hacking?

While it's not really hacking in the sense that it takes any sort of skill or brains to pull off, it's still hacking in the sense that you gain illegitimate access to someones account.

At 7/12/09 01:47 PM, KaynSlamdyke wrote: It all falls under the perview of social engineering - the oft forgotton hacker art of actually asking someone for thier password through indirect means. Whether it's trying to fake thier identity by ripping all the information off of facebook, or simply guessing common things.

Exactly, that's what happened to sarah palin (was it her?) her email recovery question was something like "what is your mothers maiden name?" and some clever fellow used a bit of smart searching, found it out and got free access into her email.

It takes very little effort to "hack" unless the person you're "hacking" is clever; recovery answers are never a good idea.

At 7/12/09 01:47 PM, Rustygames wrote: How would finding some pages on him give you his password?
You would have to enter it in somewhere, probably a fake login page of some description.

Nah I was just talking about guessing secret question answers (which sometimes is actually enough for getting the password). Social networking sites made that a ton easier.

At 7/12/09 01:51 PM, Toast wrote:

At 7/12/09 01:47 PM, Rustygames wrote: How would finding some pages on him give you his password?
You would have to enter it in somewhere, probably a fake login page of some description.

Nah I was just talking about guessing secret question answers (which sometimes is actually enough for getting the password). Social networking sites made that a ton easier.

Ah yea, you're right there. The secret question is such a stupid invention, the password is the secret fucking question :P

At 7/12/09 01:51 PM, citricsquid wrote: It takes very little effort to "hack" unless the person you're "hacking" is clever; recovery answers are never a good idea.

I always keep my answers unrelated or make a word puzzle, always one that I can remember, That way it's hard for someone to hack you. Now, who exactly was the mod who got hacked now? I haven't realized yet

It was me :(
That's why I'm not a mod

At 7/12/09 02:04 PM, Rustygames wrote: It was me :(
That's why I'm not a mod

Oh man, I hadn't realized the light aura, sorry for opening a closed wound.

Yeah, my account got taken by advanced phishing. They figured out an exploit to fake the hover url for a link. So even after I checked it, which I always do, it still said it pointed to Newgrounds.

At 7/12/09 02:05 PM, Zyphonee wrote:

At 7/12/09 02:04 PM, Rustygames wrote: It was me :(
That's why I'm not a mod

Oh man, I hadn't realized the light aura, sorry for opening a closed wound.

It's ok, sometimes it hurts so much though...

Fuck it guys, I'm extremely paranoic about this shit, I'm gonna go back to Firefox and use Interclue. It allows you to see what page you are going to go to, statistics like files, links and words and even a screenshot of how the page looks like, seriously, this is the safest thing we can do by now.

At 7/12/09 02:18 PM, Zyphonee wrote: Fuck it guys, I'm extremely paranoic about this shit, I'm gonna go back to Firefox and use Interclue. It allows you to see what page you are going to go to, statistics like files, links and words and even a screenshot of how the page looks like, seriously, this is the safest thing we can do by now.

Or just don't click dodgey links?

At 7/12/09 02:18 PM, Zyphonee wrote: Fuck it guys, I'm extremely paranoic about this shit, I'm gonna go back to Firefox and use Interclue. It allows you to see what page you are going to go to, statistics like files, links and words and even a screenshot of how the page looks like, seriously, this is the safest thing we can do by now.

There's nothing to be paranoid about. Just don't act stupid, and pay attention, and you'll be fine.

At 7/12/09 02:05 PM, Zyphonee wrote:

At 7/12/09 02:04 PM, Rustygames wrote: It was me :(
That's why I'm not a mod

Oh man, I hadn't realized the light aura, sorry for opening a closed wound.

Forget opening a closed wound; you stuck a pointed, infected stick into a wound which was still bare and untreated.

I know that it's not completely necessary, but you can never be too sure, I remember some guy developed a program that when you clicked an aparently inocent link, eg. "Hey guys, check out this site!" it would immediately redirect you to a shocker or a virus, so this Add-on is great for that kind of shit. You can never be too sure.

At 7/12/09 02:18 PM, Zyphonee wrote: Fuck it guys, I'm extremely paranoic about this shit, I'm gonna go back to Firefox and use Interclue.

It's not like you're gonna die from this. They aren't planting bombs in your computer. Yeah it's scary but as long as your extremely careful you SHOULD be fine.

Wanna know how i got hacked? From AIM. I have Luis' screenname, thealmightylou. Some guy IMed me one day, and asked for my password because people are trying to hack into my account. This is like 2 years ago, and i fell for it. Wanna know what the guys screenname was? Thealmighty1ou. And on AIM the 1 looks like the L so i thought i was talkin to Lou the whole time.

If you use common sense and a bit of clever browsing you'll be fine; If you see a link to what appears to be Newgrounds think for a second; "If I was logged in to see this link, why do I need to log in again?". I've never as far as I know suffered from "hacking" or phishing and I'm really sloppy with security, as long as you use different levels of passwords, don't bother with security questions for email accounts and make sure whatever site you're visiting is what you think it is you'll be fine.

Another "trick" that can be used is people create sites that look legitimate, for example a file hosting site, but they require you to register; so you might think it's fine but they could potentially be using that as a front for password stealing, I could quite easily put together a site now and gather up a few hundred passwords if I wanted to; there are so many methods of doing it. People fall for it because they have some sort of stupid understanding of security: Clicking links is fine, going to a page for phishing is fine, entering your information is not, so many mods seem to be saying "Don't click these links!" which is making everyone think "oh gosh if I click my account will disappear!".

Hm, it seems they are taking this too seriously over in the general forum. I post a link to a site that doesn't exist and is obviously just a joke, but I get banned... >:\

At 7/12/09 12:53 AM, Luis wrote: ITS LUIS DAY TODAY! lmao
http://www.newgrounds.com/portal/view/38 7969

If Luis Day is on the same day as your birthday, happy birthday. If not, well... I don't know... Happy Luis Day I suppose (it's like father's day, you have 2 birthdays in a year). One day I shall finish the Captain Luis animation I synchronized with the Peter Gunn Theme, I think around Luis Day 2012.

You there, American reg
Below is the general route for my outrageously expensive USA vacation/roadtrip form New York to San Fransico. Any places you think me and my mates should visit along the way (as long as it kinda epic and somewhat en route)?