HTOTM: FUSION
Original Post
More secure login file
will you all know how to get a toribash user password from a computer
you only go to login.dat and open it!
it is unsecure!
so how about making it a little harder!
there is a billion way to encrypt!
example:
md5
ex to md5:
scorpionma=8f38c4ab6f490b609f2aafe113f2e125
toribash=7aef8141831aabe4590819eef635fe52
another examle about encrypting
Hashing Encryption:
ex:apache-htpasswd
toribash:3d5545fb6463546ed6167744eda54464

all others:

INB4 14 days ban
I support this.
There was a time when i was downloading old versions of the game from other sites and the log in data of the one who uploaded it was still there and still accessible. Though these are responsibilities of the ones who uploaded it, it would somehow lessen the reports on hacked accounts.
~knight zero~
If only. Yet another thing we've bugged hampa about to no avail.

<Erf> SkulFuk: gf just made a toilet sniffing joke at me
<Erf> i think
<Erf> i think i hate you
This holds a valid point. Whenever i forgot my pass i would just open that file to save time. :3
We're all going to Hell, we may as well go out in style
Death is a promise, and your life is a fucking lie
Originally Posted by dinis
You realize md5 is easily decrypted, don't you?

IF you are going to do this, at least use salts.

i realize but
80% dont no how i know its easy
maybe someone wants to view it quick
see the login file and then relize it is encrypted then he goes
or maybe a full page of ussuless thing to make the reader get bored or get confused
and that was just an example
i know there is more secure
INB4 14 days ban
The problem remains in that the login file, no matter how it's encrypted, is equally vulnerable and valuable to theft in one manner or another.

Also, SkulFuk, when's the last time this has actually been a problem?
Squad Squad Squad lead?
The standardization of Toribash Squad roles may have gone too far!
®¬¢Ñd6†nt=d
supported, but this is pointless due to the fact this is for only people you live with. Or if you were hacked but id think that would be the least of your problems.
Easiest solution for that: Packing the login datas to a registry entry instead of a clear or scrambled login file.
It's not a big thing to code in and the security raises a little more.
Check my Soundcloud ;)