[X] My Assistant

Regardless of anything that has happened outside of this thread, I think you did a splendid job running the FreeShop and sticking with it.

It seems to me like there wasn't much communication between past and present FreeShop admins. It happens and can be easily fixed.

Wow! Thanks a lot Jenga! Coming from you sound God like!

I have already received reply from scremaz and he is up to change the password!

Now all i have to do is request Tenboro to change it and send it to us.

Hope to reopen Freeshop soon to make the last raffle event of the year!

I'm only 80% certain about this, but I think that as soon as a user's password gets changed, the forum (and every associated login) would start immediately rejecting the ipb_pass_hash value of any other user that hasn't used the new password to log in. Because the saved password hash in the cookie doesn't match the hash the E-H servers have, it should reject authentication, and make it impossible to post or login to HV or anything, really.

In other words, if A changes the password while B is logged in (to the same account), I'd think B would immediately realize that there's a problem because they wouldn't be able to do anything.

(I have no idea what's been going on with FS or if this insight is even relevant to the topic, I'm just saying what I know)

This post has been edited by Superlatanium: Dec 21 2016, 02:04

I'm only 80% certain about this, but I think that as soon as a user's password gets changed, the forum (and every associated login) would start immediately rejecting the ipb_pass_hash value of any other user that hasn't used the new password to log in. Because the saved password hash in the cookie doesn't match the hash the E-H servers have, it should reject authentication, and make it impossible to post or login to HV or anything, really.

In other words, if A changes the password while B is logged in (to the same account), I'd think B would immediately realize that there's a problem because they wouldn't be able to do anything.

(I have no idea what's been going on with FS or if this insight is even relevant to the topic, I'm just saying what I know)

Good to know: the other 20% of certain includes code malfuntion in the forums? Once i sent some request to Tenboro to pic some numbers for some of the previous raffles and he told me there were some issues regarding PM and (if i remember it right) OTHER issues (he didnt tell more), so just wondering if this other issues could also affect stuff like the password (if/if not).

I'm only 80% certain about this, but I think that as soon as a user's password gets changed, the forum (and every associated login) would start immediately rejecting the ipb_pass_hash value of any other user that hasn't used the new password to log in. Because the saved password hash in the cookie doesn't match the hash the E-H servers have, it should reject authentication, and make it impossible to post or login to HV or anything, really.

If the members table comes from Invision (as it should be since you are redirected to Invision login if you put a wrong password in hentaiverse.org) it works in a slighly different way.
A members has:
- a password hash
- a salt
- a login key (member_login_key column in the DB)
- a login key expire date (member_login_key_expire column)

When you change a password you can choose to reset the login key or keep the existing one.
If you keep the existing one as long as the cookie is not deleted or the login key expires the user can still automatically login.

This is the reset password form

As long as you put Create New Log In Key to false the user should still be able to login after the password has been changed (the explanation below seems to confirm this).

Not sure it helps but at least it should clear some doubts.

...

That's quite a strange way to go about it, for sure (IMG:[invalid] style_emoticons/default/huh.gif)

This post has been edited by gianfrix94: Dec 21 2016, 02:35

If the members table comes from Invision (as it should be since you are redirected to Invision login if you put a wrong password in hentaiverse.org) it works in a slighly different way.
A members has:
- a password hash
- a salt
- a login key (member_login_key column in the DB)
- a login key expire date (member_login_key_expire column)

When you change a password you can choose to reset the login key or keep the existing one.
If you keep the existing one as long as the cookie is not deleted or the login key expires the user can still automatically login.

This is the reset password form

As long as you put Create New Log In Key to false the user should still be able to login after the password has been changed (the explanation below seems to confirm this).

Not sure it helps but at least it should clear some doubts.

Complex but for sure is way more secure... but we have to work with what we have. Thanks anyway.

That's quite a strange way to go about it, for sure (IMG:[invalid] style_emoticons/default/huh.gif)

Thats on way thing can be, but the world has many chaotic ways... so nothing to be surprised, i think. (IMG:[invalid] style_emoticons/default/tongue.gif)

Good to know: the other 20% of certain includes code malfuntion in the forums?

The other 20% include possibilities such as your browser sending your login info (most importantly, ipb_pass_hash) to E-H, but for some reason, E-H accepting it despite the fact that the database's new hash is different, maybe like in Sapo84's post. I really don't know how it works, my surface thoughts were just that it would be pretty odd if the old hash continued to be accepted, it seems counterintuitive since someone usually wants to change their password when they're worried about something. Others surely know more than me.

just to be clear - and since i was supposed to have done it - i didn't change any password for the same reasons. it was basically me who brought in a few new members every now and then to try to help piyin, why should i need to throw them out in the vague chance that they came again?

what i said previously is that at a certain point 3/4 months ago i tried to login and it didn't work. i asked Tenboro if a change did occur and he confirmed me that it indeed happen a few weeks prior and wasn't too bothered. then i assumed it was piyin, since he was still working on FS and he informed Tenboro already so i guessed no reports were needed. that's all.

a new password has been requested and we will hear Tenboro's answer. no clue if we will never know who did that, but whatever.

(For Anyone Under Level 351|#55)Exquisite Hallowed Estoc of Slaughter(57)

I want this estoc and a potion pack please

now I write second reply..

now I write second reply..

Read the past few posts.

Should I write 5 posts for request the item?

I don't know anything of how to use this Forum

And, I can't write English very well..

I don't know anything of how to use this Forum

And, I can't write English very well..

Stop replying on this thread,or you will be banned.

Read this:https://forums.e-hentai.org/index.php?s=&am...t&p=4700384

This post has been edited by Nanoha_Prayer: Dec 22 2016, 09:10

I request

(For Anyone Under Level 351|#61)Legendary Amber Force Shield of Warding

and one posion pack please.

I'm not used to on the way on this forum.
I did not know that threads shared the number of posts.
sorry...

---------------2016.12.22 17:37

Thank you! I insert the link!

This post has been edited by 란루루: Dec 22 2016, 10:38

Stop replying on this thread,or you will be banned.

I request

Guess that's that, then

I request

(For Anyone Under Level 351|#61)Legendary Amber Force Shield of Warding

and one posion pack please.

I'm not used to on the way on this forum.
I did not know that threads shared the number of posts.
sorry...

You forgot the equipment link...
I guess you can read the Korean Version:here

Unfortunately,freeshop lost its password and won't send you anything until the problem fixed.
I sent you some HP&HD (IMG:[invalid] style_emoticons/default/smile.gif)

May I have these Items?

1 stack of Heroic Health Potion

Thanks for your help!

May I have these Items?

http://hentaiverse.org/pages/showequip.php...;key=210fec74c1
Exquisite Shocking Club of Slaughter

Thanks for your help!

Can I have scroll packs and potion packs?