GoFuckYourself.com - Adult Webmaster Forum

GoFuckYourself.com - Adult Webmaster Forum (https://gfy.com/index.php)
-   Fucking Around & Business Discussion (https://gfy.com/forumdisplay.php?f=26)
-   -   What's the best system for securing a paysite from crackers, etc? (https://gfy.com/showthread.php?t=838828)

Socks 07-02-2008 06:04 PM
What's the best system for securing a paysite from crackers, etc?
 
Protecting content from getting to illegal sites starts with your websites, so why aren't most programs using a better system than a simple htaccess?

It's way better than it used to be, but still it's very common to have very little barrier to getting into a paysite. Very often webmasters submit sites to us with passwords like "review/review" so even the most basic of attacks is going to be successful.

Strongbox? That frog one? What's the best solution?

Has anyone noticed a difference after installing one of these?

The form based ones are much harder to attack vs pop-up style, and stop most programs and automated processes from grabbing your stuff - unless they custom write something basically, made for your sites specifically.

Treat them like car thieves.. Even the most basic protection will de-energize them into moving onto an easier target.

Now: Insert cracker jokes here. ;)

Shap 07-02-2008 06:05 PM
Quote:
Originally Posted by Socks (Post 14408012)
Protecting content from getting to illegal sites starts with your websites, so why aren't most programs using a better system than a simple htaccess?

It's way better than it used to be, but still it's very common to have very little barrier to getting into a paysite. Very often webmasters submit sites to us with passwords like "review/review" so even the most basic of attacks is going to be successful.

Strongbox? That frog one? What's the best solution?

Has anyone noticed a difference after installing one of these?

The form based ones are much harder to attack vs pop-up style, and stop most programs and automated processes from grabbing your stuff - unless they custom write something basically, made for your sites specifically.

Treat them like car thieves.. Even the most basic protection will de-energize them into moving onto an easier target.

Now: Insert cracker jokes here. ;)
The thieves are joining the site and paying for it and then stealing. Tough to stop that :disgust

You get my email about tomorrow night?

fris 07-02-2008 06:46 PM
using htaccess is a big mistake

Kard63 07-02-2008 06:51 PM
Who the fuck are you calling cracker, hahahahahaha !!!

































j/k

Hunter_ST 07-02-2008 07:00 PM
Quote:
Originally Posted by Shap (Post 14408018)
The thieves are joining the site and paying for it and then stealing. Tough to stop that :disgust
True dat!

jact 07-02-2008 07:05 PM
We use Proxy Pass, and we generally have 10-20 users blocked at all times for password violations. Not the same people mind you, the quantity just seems to stay constant even after we resolve their sharing violation. I would prefer if it would do a password reset and send it to the customer's email but I guess blocking to an upsell page is good too.

directfiesta 07-02-2008 07:06 PM
Those guys are lethal ... damn crackers ....

http://www.crackersweb.com/crackersad2.jpg

BV 07-02-2008 07:11 PM
Quote:
Originally Posted by jact (Post 14408386)
We use Proxy Pass, and we generally have 10-20 users blocked at all times for password violations. Not the same people mind you, the quantity just seems to stay constant even after we resolve their sharing violation. I would prefer if it would do a password reset and send it to the customer's email but I guess blocking to an upsell page is good too.
I have a custom written addon for my proxypass that does that, user gets a new password once he trys to log in, gets one of those forms to enter characters to prove he is a real person, then bam he gets a new password.

jact 07-02-2008 07:12 PM
Quote:
Originally Posted by BV (Post 14408401)
I have a custom written addon for my proxypass that does that, user gets a new password once he trys to log in, gets one of those forms to enter characters to prove he is a real person, then bam he gets a new password.
That sounds slick, great idea.

Socks 07-02-2008 08:46 PM
Quote:
Originally Posted by Shap (Post 14408018)
The thieves are joining the site and paying for it and then stealing. Tough to stop that :disgust

You get my email about tomorrow night?
Yeap! My russian mail order bride is pressing my tuxedo as I type this. Immediately after she will be preparing my special cologne from scratch - secret recipe. :winkwink:


All times are GMT -7. The time now is 12:31 PM.

Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2025, vBulletin Solutions, Inc.
©2000-, AI Media Network Inc123