Celes wrote:A length of 10 seems to be suitable. Passwords must contain mixed case letters, numbers and symbols.
The "remember me" login key expires now after 99 days.
I understand the need for complex passwords in order to make them less likely to be randomly guessed by bots but going with what Vextor said,
Vextor wrote:...likely there was some exploit that allowed the hacker to enter an account without inputting the password at all.
it wouldn't have mattered whether the password you had was 200
I understand that you don't have a definite answer as to how the intruder got in, and again, making sure that your password is a complex one will help with account security. But is there anything else that we mere mortals (standard users) can do to increase the level of protection for ourselves? Or is it possible that the gods (admins) could implement a 'captcha'
system, or other similar bot countermeasure to the site? I know I probably speak for a lot of users here when I say that I dislike most captchas systems because they are horrendously
bad. But I'd be more than happy to put up with something like that on the SS forums for the sake of adding a little extra security to this great site!