shadowmaster wrote:Hi there!
Wesnoth 1.8 and previous versions did not require users to validate their forum account registrations before becoming able to log into the MP server with their credentials. This oversight often lent itself to abuse by troublemakers, and it was thus corrected starting with version 1.9.8 of the MP server and MP client code.
Today, Wesnoth 1.10 Release Candidate 1 (which you should MUST test, by the way) was released, in preparation for the expected release of Wesnoth 1.10.0 in—hopefully—a couple of weeks.
In order to clean up the forum database and get rid of useless registrations, we are going to purge old, unused forum accounts (registered before the start of 2012) whose registrations were never confirmed via email, and were never used to log into the official/primary MP server (server.wesnoth.org).
The purge is scheduled to take place on Sunday, February 8th 2012, and it should not incur any downtime for MP or forum users.
The number of accounts affected is close to 2,500, and it’s suspected that most of them are inactive spambot registrations. All of the affected accounts necessarily have a post count of zero, since it’s not possible to post in the forums without logging in, which requires validating your registration first.
Nonetheless, it is also possible a few of these accounts were registered in order to reserve usernames in the multiplayer server. Since we don’t have any way to verify this, it is your responsibility to validate your registrations via email now and in the future! The Wesnoth.org staff and the Battle for Wesnoth Project members will never use your email address to send you spam, nor will it be published for use by third-parties anywhere unless you choose to do so in your accounts settings in the User Control Panel. The use of throwaway addresses is discouraged since it may create a security problem or make it impossible to help you if you ever need to reset your password.
Users who never confirmed their registrations won’t be able to log into the current 1.10 MP server until they do so. We urge you to download and try Wesnoth 1.10-rc1 or log into the forums to make sure your registered accounts still work. If they do not, and you have lost access or forgotten the email address you used to register them, please either contact me directly or send a group PM to the Forum Administrators to request assistance.
Warfall wrote:i think it could be nice to know if an account will be able to meet the expectation described in the post i'm currently answering. And rather than annoying you with individual posts on the theme: "is my account ok ?", may i suggest that validated accounts will receive an administrative post just displaying the status "ok for wesnoth 1.10+".
shadowmaster wrote: The use of throwaway addresses is discouraged since it may create a security problem or make it impossible to help you if you ever need to reset your password.
xtifr wrote:shadowmaster wrote: The use of throwaway addresses is discouraged since it may create a security problem or make it impossible to help you if you ever need to reset your password.
Can you expand on this point? I've never heard of any security issues related to throwaway addresses, and the password-reset issue can easily be dealt with if your throwaway address provider supports either whitelists or temporarily refilling the address quota (both of which are features available from any reputable provider).
pauxlo wrote:I think there might be a misunderstanding of the word "throwaway address".
energyman76c wrote:So lazy bastards like me who only post once in a long while don't have anything to worry about?
Users browsing this forum: No registered users and 0 guests