• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Regarding Signatures

Page 2 - Seeking answers? Join the AnandTech community: where nearly half-a-million members share solutions and discuss the latest tech.
Originally posted by: JDrake
Originally posted by: LoKe
That's what I was getting at, you would be logged in as AnandTech Moderator. Are you telling me that wouldn't be damaging enough?
Click to expand...
So, uhhh.. what would you do as a moderator? Ban a few people, make a few posts? The mods can't do anything besides lock/delete topics (and edit/delete posts), ban people, and make posts. Everything is logged, and once they figured out someone was on their account, a simple password change would forcefully log the intruder out. They could run the IP of the intruder in their database, figure out who it was, and then permaban that member.
AND, plus, this is all considering that logging into mod's account automatically gives the user mod-ability. For all we know, they probably have a special log-in page/CP just for them that is IP-verified (Forbidden Access, etc)
Click to expand...

AnandTech Moderator has access to a mod forum, where a list of AT mods would probably reside. They have the ability to change users names, so I assume they can change passwords aswell. Edit custom titles, reset post counts, etc. A "simple password change" would be useless, because I could just obtain the cookies again. Run an IP check? Yeah, that's worthless.
 
Originally posted by: LoKe
AnandTech Moderator has access to a mod forum, where a list of AT mods would probably reside.
Click to expand...
Lol, who doesn't already know who the mods are?
Originally posted by: LoKe
They have the ability to change users names, so I assume they can change passwords aswell.
Click to expand...
Doubtful. Passwords are usually a LOT more secure than usernames and other information.
Originally posted by: LoKe
Edit custom titles, reset post counts, etc.
Click to expand...
It'd be pretty obvious who had the custom titles when the intruder was eliminated, and they could just reset them. I also doubt the mods have the ability to reset post counts, see the other thread in FI about combining accounts.
Originally posted by: LoKe
A "simple password change" would be useless, because I could just obtain the cookies again. Run an IP check? Yeah, that's worthless.
Click to expand...
You would only be able to get the cookies again if the mod went over/clicked your link, but you see, by then they would know who you were and would have editted your sig/permabanned you.
IP check useless? How? They could figure out who was messing with the forums and then permaban them and the surrounding area. And they definitely CAN do this, as they said so back when at-wiki was messed with.
 
Originally posted by: JDrake
Originally posted by: LoKe
AnandTech Moderator has access to a mod forum, where a list of AT mods would probably reside.
Click to expand...
Lol, who doesn't already know who the mods are?
Originally posted by: LoKe
They have the ability to change users names, so I assume they can change passwords aswell.
Click to expand...
Doubtful. Passwords are usually a LOT more secure than usernames and other information.
Originally posted by: LoKe
Edit custom titles, reset post counts, etc.
Click to expand...
It'd be pretty obvious who had the custom titles when the intruder was eliminated, and they could just reset them. I also doubt the mods have the ability to reset post counts, see the other thread in FI about combining accounts.
Originally posted by: LoKe
A "simple password change" would be useless, because I could just obtain the cookies again. Run an IP check? Yeah, that's worthless.
Click to expand...
You would only be able to get the cookies again if the mod went over/clicked your link, but you see, by then they would know who you were and would have editted your sig/permabanned you.
IP check useless? How? They could figure out who was messing with the forums and then permaban them and the surrounding area. And they definitely CAN do this, as they said so back when at-wiki was messed with.
Click to expand...

IP's can be falsified. And the link wouldn't have to be in a sig, and you don't have to click on it.
 
Originally posted by: JDrake
Originally posted by: LoKe
IP's can be falsified.
Click to expand...
Only to a point
Originally posted by: LoKe
And the link wouldn't have to be in a sig, and you don't have to click on it.
Click to expand...
I know. That's why I said "went over/click".
Click to expand...

If I were to do something like this, I would use an anonymous free proxy server. You would never be able to get my real IP.
 
Originally posted by: chuckywang
Originally posted by: JDrake
Originally posted by: LoKe
IP's can be falsified.
Click to expand...
Only to a point
Originally posted by: LoKe
And the link wouldn't have to be in a sig, and you don't have to click on it.
Click to expand...
I know. That's why I said "went over/click".
Click to expand...

If I were to do something like this, I would use an anonymous free proxy server. You would never be able to get my real IP.
Click to expand...

Exactly.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top