[URGENT] I'ma hack you.

[raineryeye]

[COLOR="White"][SIZE="2"]

Do you even know what your talking about?[/SIZE][/COLOR]

made a mistake, it's md5 salted and hashed

[Mag3 B4 Ma4l]

idk why plp getting hacked its so easy to secure ur acc

[Ninjablood2]

Just a couple of things that appear incorrect in your post here Brittany. Starting things off, MD5 Hash is completely hackable, not even that hard either. Go up against a cracking application and you'll get destroyed. Salt is the only protection you'll have when applied with Hash. Encryption is nothing but a myth with the new scripts that can be run through ASM with a backend engine. Secondly, remove the command. Runescape runs with an OS/IOStream. Meaning commands are sent to the server through packets, if someone were to simply make a packet editor (BWE Updated for RS) they could duplicate or stimulate the packets used in that command. Just a warning.

Salt uses a special method known pretty simple as randomizing, the reason its considered secure is due to its ability to scramble the key put in place by your hash. Personally, seeing as you're not running your character files from a SQL based server and most likely have them placed in text files or an xml table file, the salt/hash/MD5 is built through a system of Java, making it extremely weak.

No doubt its a method in your characterSave file. Of course, Delta servers use a token algorithm on your characterSave, so you're secure until someone designs a script that simply copies the files and places them into a .jar that decrypts and "peppers" your salt protection. Pepper was designed shortly after reCAPTCHA was cracked by botting software.

Salt is considered "uncrackable" when used in a MySQL or MsSQL server format. Seeing as that's running through the SQL framework, it is uncrackable. Sorry if that was too confusing but just wanted to point out some evident flaws.

[Pro Prayer]

[COLOR="White"][SIZE="3"]

Just a couple of things that appear incorrect in your post here Brittany. Starting things off, MD5 Hash is completely hackable, not even that hard either. Go up against a cracking application and you'll get destroyed. Salt is the only protection you'll have when applied with Hash. Encryption is nothing but a myth with the new scripts that can be run through ASM with a backend engine. Secondly, remove the command. Runescape runs with an OS/IOStream. Meaning commands are sent to the server through packets, if someone were to simply make a packet editor (BWE Updated for RS) they could duplicate or stimulate the packets used in that command. Just a warning.

Salt uses a special method known pretty simple as randomizing, the reason its considered secure is due to its ability to scramble the key put in place by your hash. Personally, seeing as you're not running your character files from a SQL based server and most likely have them placed in text files or an xml table file, the salt/hash/MD5 is built through a system of Java, making it extremely weak.

No doubt its a method in your characterSave file. Of course, Delta servers use a token algorithm on your characterSave, so you're secure until someone designs a script that simply copies the files and places them into a .jar that decrypts and "peppers" your salt protection. Pepper was designed shortly after reCAPTCHA was cracked by botting software.

Salt is considered "uncrackable" when used in a MySQL or MsSQL server format. Seeing as that's running through the SQL framework, it is uncrackable. Sorry if that was too confusing but just wanted to point out some evident flaws.

I was guna say something but all I can say is... True..... either way someone with enough experience can get it. Especially in md5. or they can SQLinject your website but idk if ur website would allow it i'm pretty sure your website is very well protected. anyways..... THANK YOU BRITTANY FOR FINALLY MAKING ALL THIS FOR PEOPLE WHO GIVE THERE PASSWORDS OUT!!!! IT'S SO EASY TO KEEP UR ACC SAFE PEOPLE!!!!!!!!!!!!!!!!!! FOLLO THIS PEEPS![/SIZE][/COLOR]

[Brittany]

[SIZE="2"]

Just a couple of things that appear incorrect in your post here Brittany. Starting things off, MD5 Hash is completely hackable, not even that hard either. Go up against a cracking application and you'll get destroyed. Salt is the only protection you'll have when applied with Hash. Encryption is nothing but a myth with the new scripts that can be run through ASM with a backend engine. Secondly, remove the command. Runescape runs with an OS/IOStream. Meaning commands are sent to the server through packets, if someone were to simply make a packet editor (BWE Updated for RS) they could duplicate or stimulate the packets used in that command. Just a warning.

Salt uses a special method known pretty simple as randomizing, the reason its considered secure is due to its ability to scramble the key put in place by your hash. Personally, seeing as you're not running your character files from a SQL based server and most likely have them placed in text files or an xml table file, the salt/hash/MD5 is built through a system of Java, making it extremely weak.

No doubt its a method in your characterSave file. Of course, Delta servers use a token algorithm on your characterSave, so you're secure until someone designs a script that simply copies the files and places them into a .jar that decrypts and "peppers" your salt protection. Pepper was designed shortly after reCAPTCHA was cracked by botting software.

Salt is considered "uncrackable" when used in a MySQL or MsSQL server format. Seeing as that's running through the SQL framework, it is uncrackable. Sorry if that was too confusing but just wanted to point out some evident flaws.

It's crackable if you have the salt and the keys for it, yah, but none of that can be gotten with out server files, as this thread was about being able to 'not get hacked with out files'

Idc if it's crackable outside of the RSPS world and I'm 100% sure it is, but in this situation, it's 100% not possible with out having access to the files it's stored in.[/SIZE]

[Brittany]

[SIZE="2"]

sweet update!!!

This thread's not even about updates. Enjoy those infractions.[/SIZE]

[Ashton]

Bleh I still got hacked

[Blocks]

how can i reset a password on the game? ::resetpass?

[Tee Rouze]

[SIZE="1"]

how can i reset a password on the game? ::resetpass?

If you're meaning change it then you go ::changepassword <newpasshere>[/SIZE]

[Rxrpure]

Thanks Brittany ill take this under consideration thanks for the heads up ill change my password