Hi all,

Just a quick note. As you proberly noticed, we changed the way you have to login to this site.

This was done because we had some hackers, who guessed user/passes, and after that they tried downloading the whole site.

Because this was making the site slower, as well as the plugins etc, we added extra security

Love Masha

Good you noticed !

It must be Angelina and crew :) :)


What is the role of hackers on the internet?

Historically, hackers have played a number of roles--some good, some bad. On the one hand, hackers find vulnerabilities and point them out, and this results in improved security. We're sitting in a world where often hackers are the only ones holding up their hands and saying, "Look, this isn't any good. You're being sold a bill of goods. This isn't really security." And they perform a very necessary function doing that.

On the other hand, hackers also write tools to break into systems, which, when they fall in the wrong hands, cause insecurity. So there's a balance. There's good hacking and there's bad hacking. . . . And you can use your skills for good, or you can use them for bad. And this is true for most every other aspect of society. If you're a demolitions expert, you can blow up bridges for fun, or you can do it because you're hired. The skill set is the same. Hacking is a very important skill set in our society, because these are the experts in how the systems work and how the systems fail. The people who use that expertise for bad are bad people. People who use that expertise for good are good people.

read the whole interview Click here (http://www.pbs.org/wgbh/pages/frontline/shows/hackers/interviews/schneier.html)

I had to do the new login thing. But I have only done it 1 time. after that I am allways logged in, even when I turn on and off my computer and clean it from cocies and internet files.

Allways try to login from diffrent computers with diffent webbrowsers when u change loginmethod.
I have a friend who had a website with a login rutin that did not work if u had the right webbrowser. He did not understand that until 6 month passed.

But I can understand why it's hacked. People wants to get in and look at your eyes. I hope u can stop them.

Originally posted by StarDust
I had to do the new login thing. But I have only done it 1 time. after that I am allways logged in, even when I turn on and off my computer and clean it from cocies and internet files.

Allways try to login from diffrent computers with diffent webbrowsers when u change loginmethod.
I have a friend who had a website with a login rutin that did not work if u had the right webbrowser. He did not understand that until 6 month passed.

But I can understand why it's hacked. People wants to get in and look at your eyes. I hope u can stop them.

Hi the new login is tested very well. And yes it remeber you :-) That is done to make it easier.

As far as clean internetfiles...If you want to test it, close all browsers, open one window (not on mashaworld.com) remove internetfiles and ALL cookies...

Then close browser again, open mashaworld and you will see it will ask for user/pass again :-)

Love Masha

Hi Dear,

well, security is a must and your sweet movies should only be for them who support you, that's true!

But i am very unhappy with the new solution, cuz of the following problem.
Since i have a really slow connection, i used a download manager to get your great movies. The benefit to use a download manager was to continue broken downloads. This is not possible anymore. A download of one file lasts about 1-2 hours and if it fails just right before finishing it's really annoying.

There must be any other solution for that problem? My bandwith wont hurt any server.

hope for an ongoing pleasure for those who don't have a high bandwith connection like before the change.

see ya...
zulu

Originally posted by zulu
Hi Dear,

well, security is a must and your sweet movies should only be for them who support you, that's true!

But i am very unhappy with the new solution, cuz of the following problem.
Since i have a really slow connection, i used a download manager to get your great movies. The benefit to use a download manager was to continue broken downloads. This is not possible anymore. A download of one file lasts about 1-2 hours and if it fails just right before finishing it's really annoying.

There must be any other solution for that problem? My bandwith wont hurt any server.

hope for an ongoing pleasure for those who don't have a high bandwith connection like before the change.

see ya...
zulu

HI Thanks for letting me know. I will discuss this, and ask if we can help you. Because I understand your problem

Love Masha

Originally posted by masha
HI Thanks for letting me know. I will discuss this, and ask if we can help you. Because I understand your problem

Love Masha

Thanks a lot Dear,

that is really great from you!

love ya...
zulu

Originally posted by zulu
Thanks a lot Dear,

that is really great from you!

love ya...
zulu


Of course I will do this for my members:)

Love Masha

Originally posted by masha
HI Thanks for letting me know. I will discuss this, and ask if we can help you. Because I understand your problem

Love Masha

Hi Dear,

anything new in this matter? Plz don't forget about me!

see ya...
zulu

Originally posted by zulu
Hi Dear,

anything new in this matter? Plz don't forget about me!

see ya...
zulu

Hi we are still looking at this matter. Well actually our technical guys. Because some people abusing the possibility of autodownloaders.

Stay tuned :=)

Love Masha

Maybe the technical guys could think of a way to:

Permit 10 (or some number of) downloads simultaneously - enough to get all the MPEG files from one page at the same time

Sense download speed and if it's slow enough permit even more downloads than usual.

So the hackers could do multiple downloads but it is much more inconvenient for them than before?

Maybe this does not work. I'm not sure I exactly understand how the hackers are doing it.

Originally posted by Larry Mason
Maybe the technical guys could think of a way to:

Permit 10 (or some number of) downloads simultaneously - enough to get all the MPEG files from one page at the same time

Sense download speed and if it's slow enough permit even more downloads than usual.

So the hackers could do multiple downloads but it is much more inconvenient for them than before?

Maybe this does not work. I'm not sure I exactly understand how the hackers are doing it.

This is mostly done by sniffing the network-traffic for a specific system or network for insecure passwords, like they are transferred over http port 80. There are a lot of tools out there, they would do that. To avoid these kind of hack you could use https (secure connection), but that's a little slower and slows down the webserver at all, cuz of encrypting and decrypting traffic.

Another way could be the bruteforce attack, which is much more complex and takes much more time. This means a login is tried while guessing the password. There also tools out there for that kind of shit!

Also hackers look for security holes in the webserver or any other running service, Exploits will help them if they figured out one to get into the system. After that it's mostly no deal to get some or all of the data on the server or even the network.

The best way to avoid hackers is a secure firewall and an intrusion detection system, which is able to block traffic automatically if there's some unwanted traffic such as multiple downloads and other unwanted characteristics and last but not least an application which locks accounts after they are cracked.

I would not have a problem with the new security settings on Mashaworld but the fact, you CANNOT continue broken downloads! Since i can only do one download at a time (cuz of my own slow connection speed) i wouldn't care about the multi download option.

Sorry Masha, but this is the reason you probably wont hold members with slow connection speed at your site. Anyway they are a minority and they always can't override the majority, that's democracy.

see ya...
zulu

Hi,

maybe you could allow 2 download, just so you can at least still browse the site while downloading a movie.

keep it up!

Hi Dear,

I try to download your vids and 2 of 4 downloads just fail... Sorry Dear, i really wanna have'em, but it's not possible anymore.

I've got 30 of 39 MB of one vid, it's worthless, i have to download all the way again for hours! GRMPF!!!I

Fuck! That's all i can say!

Now, plz it's not personal, but i probably got no chance to get all at the site!

see ya....
zulu

Originally posted by fexel
Hey Zulu,

nimmst du einen Download Manager?

greetz

fexel

Hey fexel,

i did, but they don't work anymore since the security changes were made :(

see ya...
zulu

Originally posted by fexel
Yes i know, that's why i asked... :)
GetRight is working, but not with queue, u have tp start the Downloads manually one after another...
But the clip u tried to download was working allright when i downloaded it...

greetz

fexel

Well my handicap is the isdn thing. A download lasts about 2 hours and if the connection sucks, i got no chance to resume the download. Does GetRight work with the resume option?

see ya...
zulu

You don't have to be sorry fex, not your fault!

That's a problem i really dislike at the site. Mashas technicians got to do something, so resuming downloads will work!

see ya...
zulu

I have just asked the tech guys and they told me it will be solved within 2 weeks.

So I guess it will be ok soon.Hackers made live harder in many industries.

Originally posted by Unregistered
I have just asked the tech guys and they told me it will be solved within 2 weeks.

So I guess it will be ok soon.Hackers made live harder in many industries.

Thats true! We almost there!

Originally posted by masha
Thats true! We almost there!

this has been 3 weeks ago and.... last week the Techs told me by mail they will need another 4 weeks...

maybe it's my fault having this mo...fu.. slow connection, which only can be used for live shows (which i love) and forum visits since the beginning of July!? No full successful downloads since this time!

i guess my patience is worn out...

will there be a solution at the horizon or not?

grrrrrr
zulu

PLZ excuse my anger!

Hi Zulu


I'm thinking about a solution to help you
(I read your problems)

But I need more time ...(zzzzz)

Hit me on ICQ

W'll talk about it.....:thumbsup

If you have idea's mail me ok?

that sucks Zulu, I understand your pain, I used to be in the same boat. How much do you pay for your slow connection, Is broad band available in your area yet. If so prices are getting cheaper and my god man its worth it, I download one of her videos in no more than 3-5 minutes. It makes the whole web that much funner, you can go to any site and grab what you want quickly.

But if its not in your area, or the wife one let you spend more, Theres not much you can really do.

Here's and idea for masha, I've noticed your movie file sizes are pretty large for their length, (sample 38mb=2min) I know you could compress them down more and not lose much quality. If you were to use divx and turn the movies in to the avi format instead of mpeg you would make the file size alot smaller, and easier for people like zulu to downlaod.

there are some good sample vids on this site, this guy does his show in divx avi format:

http://www.thebroken.org/


Divx home site:
http://www.divx.com/

Free divx plugin to paly movies:
http://www.divx.com/divx/download/

And and added bonus, you might save money with your isp, People would be downloading less from your site because the files are smaller.

Ah Fex, Your are right bro, they would have to fill out this form to get a price

http://www.divxnetworks.com/solutions/request_info.php


Anything other than personal use falls into the category of commercial use. Commercial use is not free. You are required to get a license to use any DivX software product commercial purposes. The cost of a commercial license varies depending upon how you intend to use the software.

When in doubt about whether or not what you're doing is "commercial use," feel free to write us and ask. But as some general guidelines, if you're making money in any way, directly or indirectly from your DivX-encoded content, using the DivX-encoded content to promote another product, or using the DivX-encoded content in some capacity within your business; it's almost certainly commercial use.

If you want to re-distribute DivX software for any reason, and in any way, you definitely need to ask us first. Write us and tell us what you want to do.

Just to say farewell for now... The login was just such a pain... and my subscribtion is about to expire... Good luck to you all... see you around! Rich UK

I didnt join the site tell 8-31, I guess i never knew the old way of login on. The login here in exactly what i would expect from a pay site, and has given me no problems what so ever. I logged in on day one and havent had to do it again since. When people try to use programs the help them download from a site, the tend to get greedy, and try download the entire site. These actions can cost masha alot of money and even bring her site down. Some ISP's wont even tell her before they shut her site off. So I cant see many options for a diffrent login.

Thanks a lot Wil, Fex, Johnny,

for your support in this matter! That's absolutely great :thumbsup


@Wil: THANKS! Would be cool to do something about it over your site temporarily until they hopefully get the thing fixed. Really wanna see the new photo shoots. I already got some ideas and i'll hit ya via ICQ, for sure...

BTW: nice pic :hahaha


@Fex: Thanks for your offer, but i think this will be a bit uncomfortable and also i am probably not the only one with this problem, even if i feel like it ;)


@Johnny: Thanks for your advices, but i got absolutely no chance to get higher broadband connection, except moving to another area, but finding a new appartment is pretty hard over here. You don't really wanna know how much it costs, mostly i don't wanna know ;)

The divx thing is a good idea! Are there any avi-joiner out there, which could handle it?

More but smaller files wouldn't help... since i have to download each single one, I guess i'll set my alarm clock to awake me every 15 minutes, so i can get the next part of a movie... after a while i would look like him southpark LoL


I really think, Mashaworld should do something about it, since i don't wanna bother other members and also they couldn't be interested in that.
If they cannot fix it somehow... well then, that's how it is!


Thanks again guys and see ya...
zulu

Hey,Zulu
If your looking for a avi joiner I use Easy Joiner Version 5.21
It's Free to try 19.95 to buy.It's well worth the cost.It works with all formats avi,mpeg,wmv,rm.Here a link if you want to know more.
http://www.freedownloadscenter.com/Multimedia_and_Graphics/Video_and_Animation_Tools/Easy_Joiner.html

Originally posted by mykebode
Hey,Zulu
If your looking for a avi joiner I use Easy Joiner Version 5.21
It's Free to try 19.95 to buy.It's well worth the cost.It works with all formats avi,mpeg,wmv,rm.Here a link if you want to know more.
http://www.freedownloadscenter.com/Multimedia_and_Graphics/Video_and_Animation_Tools/Easy_Joiner.html

Well, this thread is becoming the "zulu problem" thread... I should post all my other problems right here, too. (don't worry, just jokin :crazy )


Thanks Myke,

i'll try it.

see ya...
zulu

We are still working on the site sucker problem. Many people use it legit. But we removed teh lock one day(as you maybe noticed) and few hours later the site was damn slow again :-(

We are now looking what other options we can use... BUT it will be fixed:-)

Love Masha

Originally posted by masha
We are still working on the site sucker problem. Many people use it legit. But we removed teh lock one day(as you maybe noticed) and few hours later the site was damn slow again :-(

We are now looking what other options we can use... BUT it will be fixed:-)

Love Masha

Maybe i can help ya writing a perl script, which checks each member login against a database (like u use for the forum) and restricts logins as desired. Since you use Unix Apache server, there wouldn't be a problem to implement the script, but first i surely have to figure out how it fits into the login code (maybe the one u used until the end of June).
The login method u use right know wouldn't work!

tell me if you wanna know more about this solution...
zulu