Rocksolid Light

Welcome to novaBBS (click a section below)

mail  files  register  nodelist  faq  login

Simon's Law: Everything put together falls apart sooner or later.

rocksolid / News / Re: reddit butthurt

* reddit butthurtGuest
`* Re: reddit butthurtAnonUser
 `* Re: reddit butthurtanon
  `- Re: reddit butthurtRetro Guy

Subject: reddit butthurt
From: Guest
Organization: Dancing elephants
Date: Fri, 3 Aug 2018 14:13 UTC
Path: rocksolid2!def3!.POSTED!not-for-mail
From: (Guest)
Subject: reddit butthurt
Date: Fri, 03 Aug 2018 10:13:31 -0400
Organization: Dancing elephants
Lines: 127
Message-ID: <pk1lf6$5mg$>
Reply-To: Guest <>
NNTP-Posting-Host: def2.lan
Mime-Version: 1.0
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 8bit
X-Trace: 1533303078 5840 (3 Aug 2018 13:31:18 GMT)
NNTP-Posting-Date: Fri, 3 Aug 2018 13:31:18 +0000 (UTC)
User-Agent: FUDforum 3.0.7
X-FUDforum: e2245c1d60cd2fa7de3270a53d877d47 <3151>
View all headers

We had a security incident. Here's what you need to know.

TL;DR: A hacker broke into a few of Reddit's systems and
managed to access some user data, including some current
email addresses and a 2007 database backup containing old
salted and hashed passwords. Since then we've been
conducting a painstaking investigation to figure out just
what was accessed, and to improve our systems and processes
to prevent this from happening again.

What happened?

On June 19, we learned that between June 14 and June 18, an
attacker compromised a few of our employees' accounts with
our cloud and source code hosting providers. Already having
our primary access points for code and infrastructure behind
strong authentication requiring two factor authentication
(2FA), we learned that SMS-based authentication is not
nearly as secure as we would hope, and the main attack was
via SMS intercept. We point this out to encourage everyone
here to move to token-based 2FA.

Although this was a serious attack, the attacker did not
gain write access to Reddit systems; they gained read-only
access to some systems that contained backup data, source
code and other logs. They were not able to alter Reddit
information, and we have taken steps since the event to
further lock down and rotate all production secrets and API
keys, and to enhance our logging and monitoring systems.

Now that we've concluded our investigation sufficiently to
understand the impact, we want to share what we know, how it
may impact you, and what we've done to protect us and you
from this kind of attack in the future.

What information was involved?

Since June 19, we've been working with cloud and source code
hosting providers to get the best possible understanding of
what data the attacker accessed. We want you to know about
two key areas of user data that was accessed:

    All Reddit data from 2007 and before including account
credentials and email addresses

        What was accessed: A complete copy of an old
database backup containing very early Reddit user data --
from the site's launch in 2005 through May 2007. In Reddit's
first years it had many fewer features, so the most
significant data contained in this backup are account
credentials (username + salted hashed passwords), email
addresses, and all content (mostly public, but also private
messages) from way back then.

        How to tell if your information was included: We are
sending a message to affected users and resetting passwords
on accounts where the credentials might still be valid. If
you signed up for Reddit after 2007, you're clear here.
Check your PMs and/or email inbox: we will be notifying you
soon if you've been affected.

    Email digests sent by Reddit in June 2018

        What was accessed: Logs containing the email digests
we sent between June 3 and June 17, 2018. The logs contain
the digest emails themselves -- they look like this. The
digests connect a username to the associated email address
and contain suggested posts from select popular and
safe-for-work subreddits you subscribe to.

        How to tell if your information was included: If you
don't have an email address associated with your account or
your "email digests" user preference was unchecked during
that period, you're not affected. Otherwise, search your
email inbox for emails from between
June 3-17, 2018.

As the attacker had read access to our storage systems,
other data was accessed such as Reddit source code, internal
logs, configuration files and other employee workspace
files, but these two areas are the most significant
categories of user data.

What is Reddit doing about it?

Some highlights. We:

    Reported the issue to law enforcement and are
cooperating with their investigation.

    Are messaging user accounts if there's a chance the
credentials taken reflect the account's current password.

    Took measures to guarantee that additional points of
privileged access to Reddit's systems are more secure (e.g.,
enhanced logging, more encryption and requiring token-based
2FA to gain entry since we suspect weaknesses inherent to
SMS-based 2FA to be the root cause of this incident.)

What can you do?

First, check whether your data was included in either of the
categories called out above by following the instructions

If your account credentials were affected and there's a
chance the credentials relate to the password you're
currently using on Reddit, we'll make you reset your Reddit
account password. Whether or not Reddit prompts you to
change your password, think about whether you still use the
password you used on Reddit 11 years ago on any other sites

If your email address was affected, think about whether
there's anything on your Reddit account that you wouldn't
want associated back to that address. You can find
instructions on how to remove information from your account
on this help page.

And, as in all things, a strong unique password and enabling
2FA (which we only provide via an authenticator app, not
SMS) is recommended for all users, and be alert for
potential phishing or scams.
Posted on: def2.i2p

Subject: Re: reddit butthurt
From: AnonUser
Organization: Rocksolid Light
Date: Sat, 4 Aug 2018 19:28 UTC
References: 1
Path: rocksolid2!.POSTED.retrobbs!not-for-mail
From: (AnonUser)
Subject: Re: reddit butthurt
Date: Sat, 4 Aug 2018 12:28:41 -0700
Organization: Rocksolid Light
Message-ID: <e4db121d6971538cc466f2d796a82392$>
References: <pk1lf6$5mg$>
Mime-Version: 1.0
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 8bit
Injection-Info:; posting-host="retrobbs:";
logging-data="32205"; mail-complaints-to=""
To: Guest
X-Comment-To: Guest
In-Reply-To: <pk1lf6$5mg$>
X-FTN-PID: Synchronet 3.17a-Linux Feb 20 2018 GCC 6.3.0
X-Gateway: [Synchronet 3.17a-Linux NewsLink 1.108]
View all headers
  To: Guest
Every site should have a canned post ready when this happens lol.
--- Synchronet 3.17a-Linux NewsLink 1.108
Posted on RetroBBS

Subject: Re: reddit butthurt
From: anon
Organization: def4
Date: Sat, 4 Aug 2018 16:02 UTC
References: 1
Path: rocksolid2!rocksolid0!newnode!POSTED.localhost!not-for-mail
From: (anon)
Message-ID: <>
Subject: Re: reddit butthurt
Date: Sat, 04 Aug 2018 16:02:13+0000
Organization: def4
In-Reply-To: <e4db121d6971538cc466f2d796a82392$>
References: <e4db121d6971538cc466f2d796a82392$>
Mime-Version: 1.0
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 8bit
View all headers
will you prepare one for rocksolid ?

Posted on new bbs node

Subject: Re: reddit butthurt
From: Retro Guy
Organization: RetroBBS
Date: Sun, 5 Aug 2018 10:19 UTC
References: 1
From: (Retro Guy)
To: anon
Subject: Re: reddit butthurt
Message-ID: <>
Date: Sun, 5 Aug 2018 03:19:48 -0700
X-Comment-To: anon
Path: rocksolid2!!not-for-mail
Organization: RetroBBS
In-Reply-To: <>
References: <>
X-FTN-PID: Synchronet 3.17a-Linux Feb 20 2018 GCC 6.3.0
Openpgp: preference=signencrypt
Autocrypt:; keydata=xsBNBFoRZ+YBCACzyTmyPCm+rHy7x35MisbTsiH5TIre8gU3YOGQlTAHDzV7iR6nDtBX8qNHOgTQxeuA4n31YmhRQoPV2fikS/0mOD1dhUkebasjesjg5P1U+6l37qy46icXe4uhIe8DTxtFqqldNukHHuWj9aGIKnw0QuveewGDJPc7t2EIYYOx9yx2eRMYyqJutobcQ68aooNzCnoKx6eGMAtv8PbN9cmPZCUnuPTpEFBus7Vy9Xnw3jL2dOh/geY2lyjsbdpEw/9vBHETRrjBnty81VAcFu13dBDedQL9uHLThpBTOrpkwMNIMqCAvEKk7BOZllQuwI7PEv8J2ENmqlDk6ZTQQ3YJABEBAAHNLlJldHJvR3V5IDxyZXRyb19ndXlAcmV0cm9iYnMucm9ja3NvbGlkYmJzLmNvbT7CwHkEEwEIACMFAlpCG28CGy8HCwkIBwMCAQYVCAIJCgsEFgIDAQIeAQIXgAAKCRBzY7p0VU/cGgb+B/0a3Cfu7xBIa/wB8WWWH+P58mjoFxz6gNagl4ARE9BhIAtZLtxChtBBHtjZUTDdlW3HkkUpdQyyGNua8FloBGWOsebR9y4coRmHruUi9Ce6Rnkc1tVnvbdXtPd6m7FEvz4+OJwXcsxPKTpuBLXqqtcvXWCFcu3oWz8td9zY3oIk5Shw50JR06EG6mHn763i3q8+/ELq7u1xIklandup/bx0NIv0KwjqVzDwO4t/7DrxPNSlj5qnFM842f6u2NDe5rQdQ/iebXc17d67K5YCPZ1Ei3uT3o1qJQgWQRjqX4viBH1tKP94YdMQXQcdwQcla29hdNbDc3qulCWl1x0iAW/CzsBNBFoRZ+YBCADN7Jw+xKfSQG/Jlfy8UKU+3qJ1c2TBJ7SyOq1sXps+Ig67PfZlxNxHRmLuFMSJoFqEDprgdo8rm/OQ2VeOVD1PzqOHXxscAGbTCKg3ruJ9sg+gQOIc+nvHv8xY+Jwj+DyyYmnWmgkNOQf7CJ1zjeuwTTAyFejYzmEp+c4NTJCOiunCwA7pb2IeA9p6m7U0yK8tOMXa0iSRRnUTpCJiWSkb+Y/Vvo4jtLyyZlCZ+jmWRB86e2vOFjtjWupbVyZ11qY8trUm5ZdxsQ+1NdcQsTP
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101Thunderbird/52.5.2
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Language: en-US
Content-Transfer-Encoding: 7bit
View all headers
On 08/04/2018 09:02 AM, anon wrote:
will you prepare one for rocksolid ?

Posted on new bbs node

I'm sure we'll need one at some point :)

rocksolid light 0.7.2