Some time ago I was just messing around with my own server. I didn’t run one, I was just trying codes, experimenting the capabilities, learning and at the same time creating any kind of code possible. Can’t remember why, but after a short period of time for some reason the hype for creating a gamemode went away. It was either personal life reasons or some other reason having to do with computing. Has been quite a while since I took a look back at FiveM. Not long ago I started watching some videos of a role-play server that had many twitch streamers playing in it. I got interested in that server. But… When I registered on that servers forum, went on to settings to change a few of them, I found that you can connect your forum account with your Discord. Here is a little glimpse of the setting page what it looked like:
After seeing the “Show” button in the Password line I wrote a profile status on that servers forum basically saying that the owner or whoever set up the forum is up to no good, because that “Show” button means that the passwords on that forum are not hashed/encrypted in any way and posted this video:
One person replied that it has to do with the user clicking on “Save password” when the browser asks if you want to save the login information. So then I tried logging in through Microsoft Edge and not saving the login information. So I went to that exact same setting page and the “Show” button was still there even if I didn’t save the password. So this has nothing to do with the browser login information saving.
I then went on to search more about the forum. I found out that the forum page was registered ~2016 and the forum software used at that time had the capability and by default was set to hash/encrypt forum user account passwords. Which means the owner or the person who set up the forum changed the forum settings not to hash/encrypt account passwords. Which basically means that person or a group of people who thought of doing that are up to no good. After ~2 days I was met with this sweet message in the forum:
My suggestion in this topic would be to stay away from servers that do not hash/encrypt passwords and there should be a rule added if there isn’t already one that would not allow server owners not to hash/encrypt account passwords exposing the possibility of great damage happening to lots of people.