Topic: Is resetting a BTT account password bad? (Read 627 times)

I will voice the opposite opinion that changing the password is good, which means "Is resetting a BTT account password bad good". It is advisable to periodically change the password in order to ensure the security of your account. Of course, we are talking about changing the password by the real owner of the account, and not by intruders.

Technology is rapidly developing and therefore, it may soon happen that by changing the style of posting an account on the forum it will not be possible to determine the change in the owner of the account. All account posts are in the public domain and if you use AI to analyze these posts and generate new ones with it, it will probably not be easy to detect style changes.

The only caveat is that the forum is not able to determine the real owner of the account, and for this, the forum participants found a solution with the publication of their bitcoin addresses for subsequent confirmation of the right to own the account using signed messages.

changing passwords can be done periodically within a certain period. it's like a security we create ourselves. especially if we access the forum using a device that is used by several people. such as borrowing or renting a laptop or PC.
you can also try to use this method.

in case of account hacking, as long as you sign the message with your Bitcoin address on the forum. and you have email access when you sign up for an account. you can recover your account.

there is nothing wrong with changing passwords, although there will be a possibility that the account is indicated to have changed hands.

For me There are three reasons why users change their passwords and first of that is they want to secure their account so they will change their passwords, second is they change their password it because they know that there's a suspicious link they click or suspicious message they receive and lastly is that their account was hack so the hacker change the password so that the real owner can not recover their accounts.

If you are to read the rules governing the btt forum. There is no way it is stated that changing your account password is bad. Other online platform allows such a thing, and the btt forum won't be an exception to that since the account owner is the one in control of the account.

The time one should be worried about a change of password is when he is not the rightful owner of the account and the posting style of the account has changed. That's when bpip will come to play to notify the forum members that there was a time a change of password was made on the account.

Every online platform allows a change of password to be made at any time, and the btt forum won't act strictly to that since the account owner is the one in control of the account.

 

I mean changing your password was actually a good thing right? For security some are going to recommend changing passwords probably at some point could be every 6months or something like that. So changing it wasn't bad at all, it's actually a good thing right the thing here is there are times when members could easily notice a change of posting style or somehow how members make their posts. When some members change their password and then members here in the forum notice the change of posting style like it was completely different from his or her old post there was a possibility that the account was hacked, I mean members are obviously going to assume that it is a hacked account or sold account and that just means that members might tag your account as hacked.

It could easily be solved if you sign a message if you stake your Bitcoin address here in the forum you could easily prove to everyone here that you're the main owner of the account if you do that. So make sure to stake your Bitcoin address here so that if your account gets hacked you could easily recover your account.

Changing your account password is not bad because it is for your safety and security but once your notion for changing it is not in line with scam leading to account purchase or hacking you have no reason to be worried unless there is something hiden which we don't know but will eventually be seen once there is any visible evidence backing it up. I remember changing my password once after clinking to an unknown link, I had to quickly change my password to avoid giving hackers access to my account and since then I didn't receive any feedback or claims by any one in respect to that.

Well, I'm of the opinion that he should create it now, seeing the level of complaints of account hacks and all that. A 2FA should help buffer the security of accounts here. I know it takes time to recover any hacked account even when the owner has a signed message from a wallet they've staked here. During that period of wait, the user would've lost their slot in a campaign. That's me assuming they were in a campaign before that hack happened. Just like posting here and ranking up was without hassles in the past until theymos implemented the merit system to control spamming. He can also implement 2FA on accounts. After all, change is the only constant thing in life. BTW, we've seen less serious business minded sites  implement the 2FA on their platforms. So, it shouldn't be a big deal for theymos to implement. He can also delegate it to programmers here and I'm sure someone will pick up the challenge.

The point of the forum is just to hangout with like-minded individuals, it's just an account (nothing special) we shouldn't be giving too much value to it with all the security measures we're requesting for. Merit isn't a security measure. There wasn't any merit feature before, it was just implemented 5 years back when the industry begin to gain more attention and the forum began receiving more spammers in their numbers farming the forum for bounty/signature and it resulted to much spam. The merit system is needed but the other security features isn't. No big deal in forgetting your password and requesting for a new one. The procedure is automatic and mightn't need any moderators intervention when you have a valid working email so no big deal there.


That's my point exactly, like the forum was created with an opened and free minded approach. Satoshi/theymos didn't want to create any discomfort with registration and using the forum but we're the ones complicating things with all our unofficial rules and regulations. What we should be concentrating our security awareness on is our Bitcoin wallet and not the forum but I understand SmartGold01 advice and acknowledge that she meant no harm but it's left for each of us to decide how we want to keep our account safe and bare the consequences of our actions. OP resetting account password on and off the forum isn't a crime or bad, it's even recommended to keep your accounts more secure but make sure you can defend yourself properly without any doubt when your attention is called upon.

We should first ask ourselves if there's a need for resetting the password in the first place, someone like me will always set the option for always stayed logged in on my device as long as i know am the only one that always have access to my device, resetting password is a choice to do and if you know doing that will complicate things more then you shouldn't, note that while resetting your password, there will be a request for confirmation of your email and I code will be sent there for verification, this may be a bad omen for those using fake email address or yet to sign a message on bitcointalk.

I do not personally think password change is any red flag as it's one of recommended security practices.

But it is true that when some account has it's password changed recently/frequently, it might get under radar of people who check for hacked/sold accounts, so they can reward that account with proper trust rating.


Use offline password manager. I myself use password safe [1] on my android. Encrypt it and make backups regularly, so even if someone somehow gets access to the cloud file, he can't have access to the data without knowing the password.

Stake your Bitcoin address as an alternative way to secure your account [2].

 

---

[1] Password Safe

[2] Re: Stake your Bitcoin address here

But sorry to say, if implement any security policy would be a barrier to him why then do we have merits system?
Because from my own point of reasoning security policies can be liken to be as merits restrictions because, what does it mean for someone to be here without having a total freedom of ranking, same it's to security measures because I don't see any reason for one to be here without a proper security protections. If so the forum would had been that open for everyone to rank without any restrictions, anyway not that I am trying to deviate from the main purpose of this topic, but we must know is something that is called for.

I don't think that is a discomfort even as much we are trying to make the forum easily accessible Theymos should also try to implement some security standard whereby it could be very hard for an account to be hacked or stolen from the original owner, I know how many countless issues that talks about account bridging while some complained of someone using their account to apply for a loan they request for, this looks very crazy, like, let it be that before your account could be access from another advice either you must provide OTP from email associated with the account or trying to use 2fa just as you said earlier I think this could helps in reshaping the entire system than merits system. But however, meriting is also another pretty cool way to avert shitposters and spammers.

This is a security measure because many people that have lost there accounts here and finally come to the forum to complained have noticed that there accounts was compromised by changing there password many times without there noticed. Knowing how many times an account password was changed is a security measure that help us to know whether a current account that started being very active is compromised or not.

This measure had helped a lot of people to know that a particular account is compromised or not. If the setting or changing or resetting account is not there, many will lost there accounts and not able to get there accounts back because they can't remember there password. We can either reset out account through the forum or through our email.

As funny as that sounds, it's the truth. There was a time I spent some hours in contemplation on that. Even a common thing as a 2FA or email verification when one logs in, the forum doesn't see any reason to implement any. I mean, that can further strengthen accounts security.

I won't be surprised if that's the mission statement of this forum. I've come to realize that theymos doesn't like anything that will stand as encumbrances to users here. He delays in implementing anything he knows will put a lot of users in discomfort, especially when such is called for by veteran users. I think having more users onboard makes much sense to him than policing harshly those already here.

Actually not offensive but it show incapability of op not to have jut down his details, yes we believe here is a free place that teaches people lot of things but that's doesn't mean he should be that lose or open to keep misplacing his password or regularly resetting profile. Does this shows a responsibleness or someone who wouldn't come in anytime soon to exclaimed about any fault some days?
I believe he has read lots of post across the forum that keeps preaching about security and how to protect their account against hack so why on earth would he keep violating those rules so why then is still accessing this forum haven known that after some moments he would reset again.

That's a little bit offensive, isn't it? A lot of people learnt that they have to take their privacy and security more seriously after visiting this forum and forum owner has said many times that this forum will always remain as free and welcoming as possible.

Overall you have to think about what's best for your account and resetting your password is your safety net but even if you set it a hundred times if you have a weak password resetting will not work, if your account here is valuable use a very strong password that even who knows you can crack it, never use a password that is associated for you like your birthdate and of course staking your address is a must, it's our unique recovery method here this is Bitcoin forum so we have our own way of recovery instead of using 2FA or any other means.

It's never a wrong Choice to make... I've done mine once though; only that you gotta be careful how frequently that happens... That's not just gonna raise suspicions but it'll also make your account easily cracked at the time... except and otherwise you had your address staked on that thread mentioned above, then you can put up claims to it.
Some peeps get too scared to update 'em passphrases thinking they'll be held responsible for Thier actions - maybe someone's gonna pop up somewhere and begin to suggest the account's been hacked and so on..well, that's not true.

Sandra 🧑‍🦰

It is a highly valuable platform, but not to people that do not know about it. A regular cybercriminal or criminal who comes across your bitcointalk account password will not be interested in it if they do not know what it is, and if your account is low profiled especially.

You forget easily like you have identified, not keeping your password anywhere is a terrible choice to make. If you cannot recover it any day things get mixed up in your head, your account is gone.

Write your password down in your dairy in a format that nobody will be able to decipher. Just devise a means that only you know.

Definitely you can reset your password
When you forget your account password it is normal that you need to reset the password via email.  All platforms provide this opportunity so why is it can be bad for bitcointalk? You can change your personal password again and again for account security. it's not bad.

So carry on...
Chears 🤘

You may change your account password at any time at your own discretion.  Even if you change your account password every day, it is not a problem because it is your personal safety. If you are the actual owner of that account then changing the password is nothing to fear for you.  Changing the account password is feared by those who hack the account or try to use it by buying the account.  Because there are many people in this forum who check the account of changed password many times. so if the password of a hacked account or purchased account is changed and since then a different user starts using that account then that account is often reported due to which the account may get red tag. So I don't think changing your personal account password will cause any problem