I lost my password and the password reset doesn't work.
-
I tried a few times, and checked my spam too.
Anyways some helpful guy from TDWTF called @Candlejack1 told me to post my password here and the admins would be able to sort it out.
psychobunny / kale1andCjc
Please be discreet, I use this for my bank accounts and my https://nodebb.org account.
-
-
Anyways some helpful guy from TDWTF called @Candlejack1 told me to post my password here and the admins would be able to sort it out.
He is not from here. Best we can tell he is from 4chan and a charter member of NAMBLA.
-
What can I say, I love kale and uhh... The Canadian Journal of Cardiology. Gotta add some capital letters and numbers to be real secure.
-
My meta.d account's password was all lowercase letters ...
-
Ah, yeah you should add more numbers and stuff. Post it here and I'll help you make it more secure :D
EDIT: Im totally gonna get in trouble for trying to reverse troll you guys :p
https://what.thedailywtf.com/t/testing-other-forum-devs-tolerance-for-candlejack-jokes/51323/
BANNED.
-
I can make a secure password with just "a" and "b" repeated in a random order 10000 times.
-
psychobunny / kale1andCjc
Hey, I didn't know that when you post your password, Discourse automatically turns it into ■s!
-
-
Welcome to the community. You'll fit in perfectly.
-
I can make a secure password with just "a" and "b" repeated in a random order 10000 times.
Still trying to figure out how that spells out
hunter2
... I'm pretty sure it involves overflowing the buffer in just the right way but I can't figure it out. Pls send the codes.
-
abbabaaa abbbabab abbabbba abbbabaa abbaabab abbbaaba aabbaaba
(spaces for clarity only)
-
abbabaaa abbbabab abbabbba abbbabaa abbaabab abbbaaba aabbaaba
..... clever... I like it!
-
Took me waaay to long to figure out what you were doing there. I blame it on being sick!
Filed under: Physically. The mental bit never goes away.
-
Yeah, I'm having the same problem today. Spending the second night in a row throwing up is not my idea of fun and I finally conceded to taking a day off. Shouldn't have gone in yesterday really, I got next to nothing done.
-
Anyways some helpful guy from TDWTF called @Candlejack1 told me to post my password here and the admins would be able to sort it out.
psychobunny / kale1andCjc
+1, Funny
-
I think I will now only ever use 'a' and 'b' when talking about binary with you people, now.
-
You could use O and Z. Which kind of sounds like those tests that tell you to identify the color that a word means but the letters are rendered in a different color.
-
What about O and I, with I = 0 and O = 1?
-
Lacks plausible deniability.
-
onoffoffononoffonoff?
-
HEY, LET'S ASK THE LEADING EXPERT IN DUMB BINARY THINGS!
@ben_lubar, mind putting some BIT in here?
Filed under: Bitte ein Bit
-
I was going to suggest l and I.
-
I would, but my computer force-rebooted itself and now I can't ssh into my other computer for some reason.
-
-
-
Filed under: Bitte ein Bit
I lol'ed. Have a
-
Interestingly enough, someone actually did send me a password reset email.. :p
-
Interestingly, they're ratelimited by source IP and not target username.
-
Makes sense. If someone is doing a DDoS attack on a user's email by way of the password reset form, they should still be able to request to reset their password.
-
abbabaaa abbbabab abbabbba abbbabaa abbaabab abbbaaba aabbaaba
I think it's the sounds @ben_lubar makes while he's sitting the corner of the basement drooling while he plays DF.
No whoosh; I got the intended point at the 4th block of letters. But I think this is funnier, or at least as funny.
-
-
Makes sense. If someone is doing a DDoS attack on a user's email by way of the password reset form, they should still be able to request to reset their password.
But they shouldn't need to — they have plenty of valid reset tokens already!
-
-
But, you so rarely make jokes...that any human should be expected to get.
-
complain.ch
-
Wait what? So I could ddos that route and send 99999 emails to a user?
We just limit password requests until the password reset link expires (1 hour I think). The link either goes to your inbox or junk, no need for multiple requests I think.
-
I see you haven't had any users whose emails take >4 hours to arrive, then.
-
Hmm, good point... I think we could make the expiry configurable in the ACP
-
Wait what? So I could ddos that route and send 99999 emails to a user?
For a while you could do that just by spamming the password reset button. There was no rate limit. A gaming mouse and the username of the person you wanted to annoy was all you needed to max out the forum owner's Mandrilla subscription.
I do believe a person or two showed the error of that thinking to Jeff in a spectacular fashion. Now he rate limits everything. Probably even rate limiting rate limiting.
-
A gaming mouse
Who needs a gaming mouse when you have the developer console?
-
Why in fucks name did you censor that?
I do believe a person or two showed the error of that thinking to Jeff in a spectacular fashion. Now he rate limits everything. Probably even rate limiting rate limiting.
I'm inclined to think that statement is false. Jeff doesn't appear to be capable of learning anything useful.
-
Who needs a gaming mouse when you have the developer console?
People who are not on these boards if they had found it instead of us...
-
Jeff doesn't appear to be capable of learning anything useful.
Even planaria learn to turn away from pain.
-
a) I see discourse is less discourse than it used to be about trying to reply to one user while quoting another.
b) I didn't censor it, I edited it to say BIT.
-
You're not allowed to post bug reports until this forum is migrated to NodeBB
-
For a while you could do that just by spamming the password reset button. There was no rate limit. A gaming mouse and the username of the person you wanted to annoy was all you needed to max out the forum owner's Mandrilla subscription.
I thought @Matches used some other form of automation.
-
The quick and dirty is just throwing the request in fiddler and telling it to replay the session (X) times
-
-
Yeah man, it was super high tech, I understand.