It is legit folks, sorry no one's been in here tonight. I imagine RL got in the way (I know it did for me).
Has the Forum considered encrypting the login/settings fields?
It is legit folks, sorry no one's been in here tonight. I imagine RL got in the way (I know it did for me).
Well that sounds like a good bug report is in order that does (-;Although I too received the message to reset my password (current one had expired). I merely "changed" it to the same one it always was without issue.
I also had to sign in again on a different computer. It seems like the "remember me" check box is missing in the new ECF skin? Or did I just miss seeing it somewhere?
Has the Forum considered encrypting the login/settings fields?
What happened is complicated...
We have changed hosting twice in the last few months, and the database somehow got 'cleaned up'.
Our normal password reset requirement, staggered, for different usergroups, got 'lost'.
The default setting on the forum software is 6 months and that is time that just expired since a previous reset.
So the forum had a headache and decided everyone needed a p/w reset.
It's obvious that a new pass is needed, not a recycle of the old one, so this is a software fault.
Our forum software, vBulletin, isn't properly maintained anymore - you have to find a coder who can rebuild it if you need anything done.
We really need to migrate to a newer, properly-maintained application like XenForo - but this would cause some downtime.
We'd also probably lose some features till we could get them coded back in.
Me, I'd move tomorrow - but members would complain about things looking different or working funny I'm hoping we can build a test install of a new forum application, work it up to go-live status, and switch across. Maybe it's a pipedream.
People: go here and download Keepass
Downloads - KeePass
Or Roboform (max 10 passwords for the free version)
Password Manager Download - RoboForm
Or try Lastpass
https://lastpass.com/misc_download.php
I don't know how anyone can remember all the passwords you need now.
Don't EVER under ANY CIRCUMSTANCES use the same pass on two different sites.
Any password you can remember probably isn't a good password.
Here is a good password that will work in most places:
cU3n61vBj5bSXPRj9ha7Qt28dkGjPA2
[it's an example - don't use this! ]
Some places need a short password so just chop it short.
Some places need a symbol in there ($, *, & etc)
Some places can't accept a pass with a symbol.
Passwords without symbols are just as strong but you need to make them longer.
A password under about 100 bits in strength is too weak for any site you deem important (bank, social security site, ECF)
Don't use the password above, dummy
Yes - there are a whole bunch of things we'd like to do and this is one of them.
Unfortunately vBulletin is RIP and we need to move. Patching it up isn't really the answer.
About how much time you talking about? I realize things rarely go as planned, but just curious.