Silk Road forums

Support => Technical support => Topic started by: fisher on January 20, 2012, 05:10 pm

Title: to those with password/PIN issues
Post by: fisher on January 20, 2012, 05:10 pm
you guys do realize that you do not even need a password or PIN for your SR accounts right. sure, when you set up a new account, the password and PIN cannot match(they can match after setting up your account by changing them to match in your settings screen), but neither needs to be filled in. from where I sit, a secure way to set your account to keep phishers at bay is to set your main site password to blank, and your PIN to an easily remembered password or 3-4 digit number. that way, you only need to remember ONE password.  Now remember that this will still allow a phisher who logs in to your account to see your messages, and change your feedback, finalize orders (maybe PIN should be used for that as well),  and such, but they can't access your coins in any way. and since phishing is about taking your money, stopping that is all that is really important, because we are all using pgp encryption for our messages, right! you could also set your PIN to blank, and only have to remember your main site password, but you still run the risk of logging in to a phishing site and losing your coins that way. so I suggest blank main site password and simple password for PIN.

SR taking a couple of weeks to reset PIN looks to be almost as frustrating as losing your coins, so I say focus on your PIN, and forget about main site passwords, because phishers can get your main site, but not your PIN

but most important, remember the real site URL, and then who needs passwords for any of it? (they can both be set to blank from your settings screen)

silkroadvb5piz3r.onion

Title: Re: to those with password/PIN issues
Post by: TheNightHawk on January 20, 2012, 08:39 pm
So no password for login, and a simple one where it really matters? Okay.......
Title: Re: to those with password/PIN issues
Post by: fisher on January 20, 2012, 09:26 pm
not simple password, but simple to remember. why do you need a password to login? if you type it in to a phishing site, they have it, but they can't get your PIN, so it really doesn't matter if they get your log in password or not. the point of phishing it to steal your money, not to mess up your day, so most phishers have probably already moved on, but there is no point for them to try to lock out your PIN (which they have no way of phishing from you) unless they can get to your coins. they can't get to your coins without a seven day wait to reply to the reset, and even then, it is a lot of work for little pay, and as such, not really worth it unless there is a mountain of coins in an account. I was simply suggesting that the people who are forgetting their PINs and having password issues CAN make the passwords match, or leave one or both blank. but the most important thing is to remember the URL. Because if you go the correct URL EVERY time, there is no need for the passwords at all.

silkroadvb5piz3r.onion

Title: Re: to those with password/PIN issues
Post by: OldGuard on January 23, 2012, 06:55 pm
It is so easy to make a password you can remember that cannot be cracked easily by the brute force method so many hackers use. Just pick a two word name that is easy for YOU to remember whether it is a city, school even an old friend then make your password from that.

   Start with a number than symbol then the first word then another symbol then the second word another symbol then three more numbers using this setup will usually give you a password that when created on sites that tell you how secure your password is will give you one that will take billions of years to crack using the brute force method and is fairly easy to remember.

                                          9_firstword.secondword=714