Welcome, guest! Please login or register.

    * Shoutbox

    RefreshHistory
    • hardcore22: are there any kind of silabsoft servers like back in the days i miss that
      May 25, 2020, 05:44:08 AM
    • Amcora: @ dr house contact me; greetings celien :)
      May 24, 2020, 03:16:21 PM
    • Amcora: Stop shouting around please
      May 24, 2020, 03:13:26 PM
    • iddsyou: PkOwnage OSRSPS [link]  Join us on Discord! [link]  Download: [link]
      May 17, 2020, 11:44:17 AM
    • Decimate Returns: PROJECT DECIMATE RETURNS !! 300+ PLAYERS BACK IN 2012 - NOW WITH ALOT OF UPDATES ! JOIN NOW! [link]
      May 17, 2020, 02:48:19 AM
    • Decimate Returns: PROJECT DECIMATE RETURNS !! 300+ PLAYERS BACK IN 2012 - NOW WITH ALOT OF UPDATES ! JOIN NOW! [link]
      May 17, 2020, 02:48:12 AM
    • Decimate Returns: PROJECT DECIMATE RETURNS !! 300+ PLAYERS BACK IN 2012 - NOW WITH ALOT OF UPDATES ! JOIN NOW! [link]
      May 17, 2020, 02:47:56 AM
    • Decimate Returns: PROJECT DECIMATE RETURNS !! 300+ PLAYERS BACK IN 2012 - NOW WITH ALOT OF UPDATES ! JOIN NOW! [link]
      May 17, 2020, 02:47:49 AM
    • Decimate Returns: PROJECT DECIMATE RETURNS !! 300+ PLAYERS BACK IN 2012 - NOW WITH ALOT OF UPDATES ! JOIN NOW! [link]
      May 17, 2020, 02:47:42 AM
    • Decimate Returns: PROJECT DECIMATE RETURNS !! 300+ BACK IN 2012 - NOW WITH ALOT OF UPDATES ! JOIN NOW! [link]
      May 17, 2020, 02:47:29 AM
    • ragnoroker: BRAND NEW SERVER - PRE EOC - UNIQUE - JOIN TODAY :) - [link]
      May 15, 2020, 11:18:03 AM
    • ragnoroker: BRAND NEW SERVER - PRE EOC - UNIQUE - JOIN TODAY :) - [link]
      May 15, 2020, 11:17:53 AM
    • ragnoroker: BRAND NEW SERVER - PRE EOC - UNIQUE - JOIN TODAY :) - [link]
      May 15, 2020, 11:17:50 AM
    • Decimate Returns: Project Decimate 474 OSRS ; [link]
      May 13, 2020, 07:27:00 PM
    • hardcore22: are there any silabsoft servers left? of the good old days like hackscape
      May 12, 2020, 07:53:18 AM
    • iddsyou: yo guys check out this instagram post #pkownage  [link]
      May 06, 2020, 02:35:58 PM
    • fishingsheep: any servers like project catasrophe or frugoo scape been remade ?
      May 04, 2020, 05:01:00 PM
    • asshole_rule: relmitos the legend
      May 04, 2020, 04:28:54 PM
    • iddsyou: PkOwnage 317 OSRS, Vote4donor, [link] Download now: [link] Discord: [link]
      May 04, 2020, 11:15:11 AM
    • relmitos: is anyone familiar with 317 packet opcodes? Im confused about opcode 3 (wich appears to send wether or not the client window is currently focused). is it safe to ignore?
      May 03, 2020, 08:47:40 AM

    Show Posts

    This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


    Messages - Moparisthebest

    Pages: [1] 23 ... 41
    1
    General Discussion / Re: Your Jesus has been crucified
    « on: September 04, 2016, 08:48:49 AM »
    I dont really understand why anyone would delete a Mopman...

    2
    Community Feedback / Re: Broken Server
    « on: August 08, 2016, 09:09:39 AM »
    Ah, Dr_house deleted this topic[/url], apparently he has time to do that but not to respond or fix the problems:


    3
    Community Feedback / Re: Broken Server
    « on: August 05, 2016, 01:13:52 PM »
    New owners appear to have abandoned the forum, so goodbye to moparscape.org and hello https://forum.moparisthebest.com/

    4
    Community Feedback / Re: Broken Server
    « on: August 03, 2016, 11:25:56 AM »
    Oops I still have my pingdom reports for moparscape.org turned on, here is this last month's report:

    OVERVIEW: AVERAGE OF ALL CHECKS
    UPTIMEOUTAGESRESPONSE TIME
    99.27%363471 ms

    Compare that to the last month I hosted it:
    OVERVIEW: AVERAGE OF ALL CHECKS
    UPTIMEOUTAGESRESPONSE TIME
    99.97%2625 ms

    So much for bringing it back...

    Also I sent him an email with a link to this post July 26th, so keep tuned for more updates...

    5
    Community Feedback / Re: Broken Server
    « on: July 22, 2016, 03:04:01 PM »
    I don't think you realize the people who bought the forums never had any real intentions of revitalizing them.

    If that's the case, why purchase them?  And if it was *really* to just get the moparscape.org domain and to hell with the forums (which he specifically said this was not the case), then I'll just go back to hosting the forums on moparisthebest.com.

    6
    Community Feedback / Broken Server
    « on: July 22, 2016, 01:50:07 PM »
    It's been a LONG time now since Dr House started hosting the forums, and though he said he'd have these easy-to-fix issues sorted shortly, nothing has been done yet, why not?  And when can they be done?

    • No email, this means no new users can register, and existing users that forget their passwords can no longer log in.  This is a major issue that will kill the community, and SHOULD have been set up before even transferring the forum.
    • No search on forum, this also kills a forum because no one can find interesting topics, you need to set up the sphinx search daemon or another alternative
    • No search on server status page, same issue as above
    • Broken links, the 'CHAT' link up top goes nowhere, set it to https://www.moparisthebest.com/irc/ instead, or host your own
    • Slow, probably due to windows, there are threads complaining about it
    • No details/communication, do you have automatic backups set up yet, or will everything done on here disappear one day with a hard drive failure?

    Get to work please!!!! I sold you the forum with the promise of revitalization, not a quick death because you don't want to spend a few hours setting even the basics like email up properly....

    edit:
    New owners appear to have abandoned the forum, so goodbye to moparscape.org and hello https://forum.moparisthebest.com/

    7
    Trash Can / Re: moparscape.org ownership change
    « on: July 01, 2016, 03:09:33 PM »
    Ok guys he is officially hosting the forum now.
    should i be worried that i had to login again?

    No the cookie named changed, that is all.

    8
    Trash Can / Re: moparscape.org ownership change
    « on: July 01, 2016, 01:27:02 PM »
    Ok guys he is officially hosting the forum now.

    9
    Trash Can / Re: moparscape.org ownership change
    « on: July 01, 2016, 10:34:38 AM »
    Ok I am sending him one of my pinned keys now and he will be taking over hosting, I'll see you all on the other side! :)

    10
    Trash Can / Re: moparscape.org ownership change
    « on: July 01, 2016, 10:17:39 AM »
    Dr House is preparing to take over the hosting shortly, probably within the next couple days.

    good job basically bricking the site earlier bud with the hpkp header

    "An error occurred during a connection to www.moparscape.org. The server uses key pinning (HPKP) but no trusted certificate chain could be constructed that matches the pinset. Key pinning violations cannot be overridden. Error code: MOZILLA_PKIX_ERROR_KEY_PINNING_FAILURE"

    ps i also like xampp fudge yeah dog

    "Fatal error: Call to undefined function scrypt() in C:\xampp\htdocs\smf\Sources\scrypt.php on line 212"

    Interesting, he must have changed the DNS then.  But yes, modern browsers who have visited moparscape.org before would have the key pinned and would refuse to connect.

    11
    Trash Can / Re: moparscape.org ownership change
    « on: June 20, 2016, 09:29:47 PM »
    Plot twist: MITB isnt actually hosting the forums still, Dr. House already has control and is posting as MITB to make us feel safe

    I said I'd say when I transfer hosting, but you could also verify it by checking the IP of this and moparisthebest.com (the same while I'm hosting), and the sha256 public key pin hash (again, same as moparisthebest.com while I'm hosting, different afterwards).  Also check which domains the certificate is valid for. :)

    12
    Trash Can / Re: moparscape.org ownership change
    « on: June 16, 2016, 12:48:32 PM »
    Has mitb explicitly stated that the payment was received?

    I was under the impression it was agreed but not processed order wise yet

    Yes, the payment was received and the domain transferred to Dr House the day I posted this thread.  I am still hosting the forum for now however.

    13
    Trash Can / Re: moparscape.org ownership change
    « on: June 02, 2016, 11:49:29 AM »
    So what's the latest news on the deal? When is the merge/switch supposed to take place? Any eta?

    I don't have an ETA, just waiting until Dr. House let's me know he is ready.  I will announce on this thread when it's going to take place, I expect it'll require an hour or two of downtime.
    so will you have any say or anything to what he does? Could he, for say, actually install a drive-by and you'd have nothing but to watch what you built be destroyed?
    No way he will do that because it's not an effective way to make a profit on the money he paid.  Also if he does that, I'd report him to the FBI.

    14
    Trash Can / Re: moparscape.org ownership change
    « on: May 27, 2016, 11:05:03 AM »
    So what's the latest news on the deal? When is the merge/switch supposed to take place? Any eta?

    I don't have an ETA, just waiting until Dr. House let's me know he is ready.  I will announce on this thread when it's going to take place, I expect it'll require an hour or two of downtime.

    15
    Trash Can / Re: moparscape.org ownership change
    « on: May 25, 2016, 08:26:05 AM »
    Yes moderators have not changed, Dr House is still not hosting the forums.

    16
    Trash Can / Re: moparscape.org ownership change
    « on: April 29, 2016, 11:40:03 AM »
    Moparisthebest: Because he get the code to the forums, he could update the login form to send passwords in clear-text and handle that encryption on the server-side (I assume it's done client-side now). So he could log all username and password pairs easily.

    Of course, once he is running it, but the point is that he can't bruteforce any old passwords from people who didn't change it before the switch.

    17
    Trash Can / Re: moparscape.org ownership change
    « on: April 29, 2016, 10:30:07 AM »
    I give a shit about the email and passwords connected to the account

    To address these concerns, I have implemented scrypt hashing of passwords in SMF:
    https://github.com/moparisthebest/moparscape.org-smf/commit/fb9cf72df9b68ed6461d979772aac7b1eab697f1
    This is why you were just logged out and forced to log back in. :)

    Default SMF has all passwords hashed like sha1(username + password), which is using username as a salt which defends against rainbow tables but not bruteforce of course.  Therefore I couldn't mass-convert the database to scrypt(password), but I *could* mass-convert it to scrypt(sha1(username + password)), so that's what I did.

    I also discovered default SMF stores secret answers as just md5(secret_answer), no salt, which is TERRIBLE, again I mass-converted this to scrypt(md5(secret_answer)).  It took about 30 hours of computing time to do this, so I'd say everything is perfectly safe against brute-force recovery.

    There is a bug in my smf scrypt implementation I couldn't quite figure out, but I decided it wasn't a show stopper and continued.  Now if you change your password, it will be changed successfully, but you'll be logged out with a 'User profile does not exist' error, and you can then log back in with the new password.

    Hopefully that adequately addresses concerns and proves he isn't in this just for the passwords, as there is no longer any feasible possibility of him getting them from bruteforce.

    edit:
    If you are curious about the scrypt parameters it uses currently, it's:
    N = 32768  The CPU difficultly (must be a power of 2, > 1)
    r = 8         The memory difficultly
    p = 1        The parallel difficultly

    18
    Trash Can / Re: moparscape.org ownership change
    « on: April 28, 2016, 09:57:32 AM »
    you're selling our private data

    What private data? Everything on the forums is public, except your password (protected by scrypt), and your email which is essentially worthless.  And you can change both of them at any point right now?

    worthless??????????? thats why marketing companies pay for verified emails??????????????

    Really, which ones?  I would have sold them for much less hehe.

    I seriously doubt it, and are we forgetting the full database has already been leaked when a certain admin re-used a password?

    Moparisthebest: Do you know what plans have been made so far? All I want to know is what ideas are coming to the table, maybe even an introduction of the team would be nice. As of right now not much communication has been sent out as to what is happening other than you sold the forum.

    I know I'm running it until he wants to switch over, he said the staff could all stay if they want to, and I know he is making big nice changes to return the forum to it's former glory, and that's about it?

    19
    Trash Can / Re: moparscape.org ownership change
    « on: April 28, 2016, 09:43:21 AM »
    you're selling our private data

    What private data? Everything on the forums is public, except your password (protected by scrypt), and your email which is essentially worthless.  And you can change both of them at any point right now?

    20
    Trash Can / Re: moparscape.org ownership change
    « on: April 27, 2016, 02:20:20 PM »
    I would prefer to have my account deleted prior to the transfer simply because I don't know who dr house is or his intentions.

    Feel free to change your password and/or email, but I think he has nothing but the best of intentions with regard to the website.

    Pages: [1] 23 ... 41
    Copyright © 2017 MoparScape. All rights reserved.
    Powered by SMFPacks SEO Pro Mod |
    SimplePortal 2.3.5 © 2008-2012, SimplePortal