(Erryone get logged out) Addressing login issue

Post by **rusty_shackleford** » March 4th, 2024, 18:56

There will be a one-time change that will cause everyone to be logged out. I apologize for the inconvenience, this is an attempt to fix a persistent issue with certain legacy users having login issues.

Please let me know if anyone has issues staying logged in after this, thank you.

Konjad · Post by **Konjad** » March 5th, 2024, 08:54

I expected 2FA when re-logging

Post by **rusty_shackleford** » March 5th, 2024, 08:55

Konjad wrote: ↑ March 5th, 2024, 08:54
I expected 2FA when re-logging

To be clear, this was a last resort after a long time of troubleshooting. I don't even know if it will fix the issue.

Post by **Ratcatcher** » March 5th, 2024, 09:58

Well, was it fixed? Having to login again caused me an immeasurable amount of inconveniences and my day is now ruin. I hope it was worth it, at least.

asf · Post by **asf** » March 5th, 2024, 18:16

i almost didn't remember the password

Post by **Magick** » March 5th, 2024, 23:56

asf wrote: ↑ March 5th, 2024, 18:16
i almost didn't remember the password

That's what password reset is for lol

Decline · Post by **Decline** » March 5th, 2024, 23:59

I never persist the session (aka I always login) which amounts to one button press when opening this site, because I use a proper password manager.

And you should do too.

Analogue Dreams · Post by **Analogue Dreams** » March 6th, 2024, 07:14

Decline wrote: ↑ March 5th, 2024, 23:59
I never persist the session (aka I always login) which amounts to one button press when opening this site, because I use a proper password manager.

And you should do too.

So you keep a persistent session of your password manager's database open and unencrypted instead? Why would you avoid keeping cookies that keep you logged in, but use a password manager that stays open and doesn't time out and lets you enter passwords with only one button? Reminds me of using LUKS1 with PBKDF2 and TPM to make it easy for authorities to bypass the encryption entirely, or if they don't have someone who knows how to do that, they could crack such a weakly encrypted password automatically in a few minutes without any technical knowledge anyway.

Post by **rusty_shackleford** » March 6th, 2024, 08:21

Analogue Dreams wrote: ↑ March 6th, 2024, 07:14

Decline wrote: ↑ March 5th, 2024, 23:59
I never persist the session (aka I always login) which amounts to one button press when opening this site, because I use a proper password manager.

And you should do too.
So you keep a persistent session of your password manager's database open and unencrypted instead? Why would you avoid keeping cookies that keep you logged in, but use a password manager that stays open and doesn't time out and lets you enter passwords with only one button? Reminds me of using LUKS1 with PBKDF2 and TPM to make it easy for authorities to bypass the encryption entirely, or if they don't have someone who knows how to do that, they could crack such a weakly encrypted password automatically in a few minutes without any technical knowledge anyway.

Decline · Post by **Decline** » March 7th, 2024, 00:34

Analogue Dreams wrote: ↑ March 6th, 2024, 07:14
So you keep a persistent session of your password manager's database open and unencrypted instead?

No.

Why would you avoid keeping cookies that keep you logged in, but use a password manager that stays open and doesn't time out and lets you enter passwords with only one button?

Because it is convenient.

Reminds me of using LUKS1

Wrong/Invalid comparison.

Password managers exist for using different passwords across multiple sites, so the leak of one website's DB does not cause your account to be taken over on another website. The local state of the encryption (if there's even one) is completely secondary to the password managers main purpose.

Please be dumb somewhere else.

Decline · Post by **Decline** » March 7th, 2024, 00:45

rusty_shackleford wrote: ↑ March 6th, 2024, 08:21

Analogue Dreams wrote: ↑ March 6th, 2024, 07:14

Decline wrote: ↑ March 5th, 2024, 23:59
I never persist the session (aka I always login) which amounts to one button press when opening this site, because I use a proper password manager.

And you should do too.
So you keep a persistent session of your password manager's database open and unencrypted instead? Why would you avoid keeping cookies that keep you logged in, but use a password manager that stays open and doesn't time out and lets you enter passwords with only one button? Reminds me of using LUKS1 with PBKDF2 and TPM to make it easy for authorities to bypass the encryption entirely, or if they don't have someone who knows how to do that, they could crack such a weakly encrypted password automatically in a few minutes without any technical knowledge anyway.

Full disk encryption protects against accidental discard of sensitive information, which is a common occurrence in organizations.

Ranselknulf · Post by **Ranselknulf** » March 8th, 2024, 03:17

rusty_shackleford wrote: ↑ March 6th, 2024, 08:21

Analogue Dreams wrote: ↑ March 6th, 2024, 07:14

Decline wrote: ↑ March 5th, 2024, 23:59
I never persist the session (aka I always login) which amounts to one button press when opening this site, because I use a proper password manager.

And you should do too.
So you keep a persistent session of your password manager's database open and unencrypted instead? Why would you avoid keeping cookies that keep you logged in, but use a password manager that stays open and doesn't time out and lets you enter passwords with only one button? Reminds me of using LUKS1 with PBKDF2 and TPM to make it easy for authorities to bypass the encryption entirely, or if they don't have someone who knows how to do that, they could crack such a weakly encrypted password automatically in a few minutes without any technical knowledge anyway.

Jokes on them. My laptop is encrypted with a biometric **** print reader.

If they want to forcibly take my password, then they'll have to grab my penis.

krokodil · Post by **krokodil** » March 10th, 2024, 08:21

>one time