Who here uses ccbill's option for random passes? - GoFuckYourself.com

Dirty F · 06-22-2004, 09:44 AM

Im thinking of going with that since too many members get cancelled by my password protection script so that automatically also means i lose an potential rebill.

I guess a random pass every time they login will prevent that right?

Dirty F · 06-22-2004, 10:17 AM

Anybodyyyyyy?

Juicy D. Links · 06-22-2004, 10:20 AM

Quote:

Originally posted by Battuss
Anybodyyyyyy?

Dirty F · 06-22-2004, 10:48 AM

Quote:

Originally posted by juicylinks

Do you?

Juicy D. Links · 06-22-2004, 10:51 AM

Quote:

Originally posted by Battuss
Do you?

hi

svenski · 06-22-2004, 11:04 AM

hello

PrivateIvy · 06-22-2004, 11:10 AM

I use Password Sentry and have never had any problems like you mentioned....so no, it would be a HEADACHE to do it the other way...be easier to use a script that works with ccbills ( like Password Sentry) and avoid the problem.

Ivy

chupacabra · 06-22-2004, 11:13 AM

Quote:

Originally posted by PrivateIvy
I use Password Sentry and have never had any problems like you mentioned....so no, it would be a HEADACHE to do it the other way...be easier to use a script that works with ccbills ( like Password Sentry) and avoid the problem.

Ivy

another vote for PW Sentry... very solid script, been using it for years now. Dan (the writer) is very helpful and always close by if you need help getting it going, and the price is really great compared to some other options (Pennywise, ugh)..

svenski · 06-22-2004, 11:30 AM

Ok,

as the thread got serious.

A large part of the problem is the fact that there are lists with literally tens of thousands (if not more) of user/pwd combinations that will be hurled at your site.

Some of the hurlers learn as they go along.

The average surfer uses a username and password that is easy to remember and perhaps personal to them . They also tend to use the same login for site after site.

All it needs is for that user id/pwd to be compromised and it will get added to the numerous lists/hurler proggies.

If you use CCBill's random usernames and passwords that will prevent the above and the customer support impact is minimal.

If you use the random passes AND use the additional characters these will conflict with Password Sentry when it tries to update the records for each login.

Use the random passes without the additional characters and you'll be fine for use with Password Sentry.

MaDalton · 06-22-2004, 11:33 AM

we use ccbill random generated usernames and passwords - not a single problem yet and no pass was ever hacked.

VirtuMike · 06-22-2004, 01:03 PM

We switched to random a while back - the customers don't like it but they don't seem to care after a while. But the brute forcers HATE it so we're sticking with it.

freeadultcontent · 06-22-2004, 01:08 PM

Random user/pass for me.

VegasSEGirl · 06-22-2004, 01:15 PM

We've used the randomly generated user/passes before and had no problems with it. It doesn't change each time they log in though, seems like you might think it does. It just gives them a generated combination instead of them choosing thier own. Does alot to cut back on hacked passwords.

SGS · 06-22-2004, 01:21 PM

Quote:

Originally posted by PrivateIvy
I use Password Sentry and have never had any problems like you mentioned....so no, it would be a HEADACHE to do it the other way...be easier to use a script that works with ccbills ( like Password Sentry) and avoid the problem.

Ivy

Doesn?t Password Sentry cause problems with the CCBill dialer though?

Dirty F · 06-22-2004, 01:55 PM

Cool, now i will use it for sure. Seems a way better option.

PrivateIvy, what does password sentry do when a password gets abused? After lets say 10 different ips login it cancels the pass right? Maybe im understanding it wrong.

06-22-2004, 09:44 AM	#1
Dirty F Too lazy to set a custom title Industry Role: Join Date: Jul 2001 Posts: 59,204	Who here uses ccbill's option for random passes? Im thinking of going with that since too many members get cancelled by my password protection script so that automatically also means i lose an potential rebill. I guess a random pass every time they login will prevent that right?

06-22-2004, 11:33 AM	#10
MaDalton I am Amazing Content! Industry Role: Join Date: Feb 2004 Posts: 39,829	we use ccbill random generated usernames and passwords - not a single problem yet and no pass was ever hacked. __________________ AmazingContent.com - providing only the best content and service since 2003 Monetize your content on Veegaz.com - one of Germanies largest VOD sites Got German traffic? We convert it into money for you! Skype: madalton02826 - Email: oltecconsult [at] gmail [dot] com

06-22-2004, 01:03 PM	#11
VirtuMike Confirmed User Join Date: May 2002 Location: Seat 1A Posts: 2,483	We switched to random a while back - the customers don't like it but they don't seem to care after a while. But the brute forcers HATE it so we're sticking with it. __________________ Host it in AMSTERDAM at EUROTIVITY! - We also offer BACKUP SERVICES! XYZZY4L

06-22-2004, 01:08 PM	#12
freeadultcontent Confirmed User Join Date: Oct 2002 Location: "evitcepsrep ruoy egnahc" Posts: 9,976	Random user/pass for me. __________________ Exclusive Ethnic & Microniche Sites

06-22-2004, 01:15 PM	#13
VegasSEGirl Confirmed User Join Date: Jun 2004 Posts: 267	We've used the randomly generated user/passes before and had no problems with it. It doesn't change each time they log in though, seems like you might think it does. It just gives them a generated combination instead of them choosing thier own. Does alot to cut back on hacked passwords. __________________ Make money with an amateur who is actually HOT and SMART!

06-22-2004, 10:17 AM	#2
Dirty F Too lazy to set a custom title Industry Role: Join Date: Jul 2001 Posts: 59,204	Anybodyyyyyy?

06-22-2004, 11:04 AM	#6
svenski Confirmed User Join Date: Mar 2004 Location: Behind you Posts: 227	hello

06-22-2004, 11:10 AM	#7
PrivateIvy Confirmed User Industry Role: Join Date: Oct 2003 Location: North Carolina Posts: 4,257	I use Password Sentry and have never had any problems like you mentioned....so no, it would be a HEADACHE to do it the other way...be easier to use a script that works with ccbills ( like Password Sentry) and avoid the problem. Ivy

06-22-2004, 11:30 AM	#9
svenski Confirmed User Join Date: Mar 2004 Location: Behind you Posts: 227	Ok, as the thread got serious. A large part of the problem is the fact that there are lists with literally tens of thousands (if not more) of user/pwd combinations that will be hurled at your site. Some of the hurlers learn as they go along. The average surfer uses a username and password that is easy to remember and perhaps personal to them . They also tend to use the same login for site after site. All it needs is for that user id/pwd to be compromised and it will get added to the numerous lists/hurler proggies. If you use CCBill's random usernames and passwords that will prevent the above and the customer support impact is minimal. If you use the random passes AND use the additional characters these will conflict with Password Sentry when it tries to update the records for each login. Use the random passes without the additional characters and you'll be fine for use with Password Sentry.

06-22-2004, 01:55 PM	#15
Dirty F Too lazy to set a custom title Industry Role: Join Date: Jul 2001 Posts: 59,204	Cool, now i will use it for sure. Seems a way better option. PrivateIvy, what does password sentry do when a password gets abused? After lets say 10 different ips login it cancels the pass right? Maybe im understanding it wrong.