[NOTICE] mcxNOW had a 3rd party leaked database run against the login system

[smoothie]

All Fear, Uncertainty, and Doubt aside.  I still feel safer with my coins on mcxNOW than a couple of other exchanges.  

Let me ask you this: Do you know the true identity of RS?  In case he decides to close up shop and run with your coins?

BTC-e operates the same way....with anonymity.

Perhaps RS can prove me wrong and reveal his personal identity to instill trust that he could be held responsible if he ever decided to close his exchange and run with user deposits?

I'm sorry, but I have read through the old coinhunter drama..  doesn't phase me a bit.    I'm new to the community and have watched rs talk in chat for months now.  I don't believe that's going to happen, nor is it the reason for this thread.  You guys should quit trolling so damn hard.  The guy doesn't wanna tell you who he is.  Get over it.

I'm sorry but you could not have possibly gotten "caught up" on reading that fast. You can't just read his posts you have to read them in context to the rest of the community at that time.

Nice try to make it seem like you're all caught up.

Your account was created on April 27, 2013. Hardly enough time to know what went on over 2 years.

[BitcoinEXpress]

All Fear, Uncertainty, and Doubt aside.  I still feel safer with my coins on mcxNOW than a couple of other exchanges.  

Let me ask you this: Do you know the true identity of RS?  In case he decides to close up shop and run with your coins?

BTC-e operates the same way....with anonymity.

Perhaps RS can prove me wrong and reveal his personal identity to instill trust that he could be held responsible if he ever decided to close his exchange and run with user deposits?

I'm sorry, but I have read through the old coinhunter drama..  doesn't phase me a bit.    I'm new to the community and have watched rs talk in chat for months now.  I don't believe that's going to happen, nor is it the reason for this thread.  You guys should quit trolling so damn hard.  The guy doesn't wanna tell you who he is.  Get over it.

I'm sorry but you could not have possibly gotten "caught up" on reading that fast. You can't just read his posts you have to read them in context to the rest of the community at that time.

Nice try to make it seem like you're all caught up.

Your account was created on April 27, 2013. Hardly enough time to know what went on over 2 years.

Maybe he should look at the time stamp of the genesis block of Solidcoin 2 to see the maturity level of the guy. Remember, this was a coin that was ready for the collapse of bitcoin.


~BCX~

[Disastrus]

that RS dude is a giant twat and bi polar.
excellent material for the world nowadays...

And you have to wonder why guys like smoothie and bitcoinexpress are so determined.
I tend to believe them, because i have seen how 2 faced that Realfullofit can be.

powertripping geek.

[wyldfire]

I'm not condoning the "attacker" if indeed that is what happened. You need to do some reading of Coinhunter/Realsolid going back to August 2011. Come back and let's discuss.

N00b here.  Executive summary, or links to exemplary posts?

[smoothie]

I'm not condoning the "attacker" if indeed that is what happened. You need to do some reading of Coinhunter/Realsolid going back to August 2011. Come back and let's discuss.

N00b here.  Executive summary, or links to exemplary posts?

https://bitcointalk.org/index.php?action=profile;u=34967;sa=showPosts

[OnlyC]

Why don't you add the Re-captcha to login.

[FiiNALiZE]

Unfortunately there isn't much one can do to force users to use a unique username and password at mcxNOW.

Every mcxnow user has a plenty of public/private key pairs

Require all users to use a system generated random password of X length etc.

Done.

Yeah that's a great way to scare everyone away.

No one is going to go on a site where they can't set their own passwords.

[Buffer Overflow]

Don't these sites salt and hash passwords before being stored in their database?

[TheFuneral]

Now we have Realsolid over on his site claiming Coinbase was the source of the leaked passwords LOL

I guess this has nothing to do with his former dislike of LTC and Coblee who works there now.

~BCX~

do you have a script that tells you when RS posts? I'm thoroughly impressed with your response time to his postings and wish you all the best in your endeavors. Keep it up!

[mrtchipr]

I admit I'm a retard but this would of at least saved me.

2FA has been there since the update too. mcxNOW doesn't store or use emails for verification but does give users the choice of Google Authenticator as a second auth device.

I'm unable to setup my 2FA using Google Authenticator. I asked other users on mcxNOW chat and they told me they experience the same issue. Some recommended I try to enter the key manually instead of scanning the QR code but it still won't accept it.

Please advice what I should do.

[LiteMine]

I admit I'm a retard but this would of at least saved me.

2FA has been there since the update too. mcxNOW doesn't store or use emails for verification but does give users the choice of Google Authenticator as a second auth device.

I'm unable to setup my 2FA using Google Authenticator. I asked other users on mcxNOW chat and they told me they experience the same issue. Some recommended I try to enter the key manually instead of scanning the QR code but it still won't accept it.

Please advice what I should do.

Had the same problem and they told me to adjust the time a little on my device (PC for me using GAuth app), because the logs said my numbers were slightly off, so it kept rejecting me. When I finally got in after about 30-40 login attempts, I just ended up withdrawing. The most disturbing part was the 30 days' wait to reset the 2FA. Now I'm sticking with Cryptsy, the SMS code to your phone works every time, so far.

Here's the email:
If you can sync the clock on your 2FA device, or as soon as the number switches you will be able to get in. There's currently no way to undo 2FA devices, the aim of them is to prevent 3rd parties entering. Other sites have a one month waiting period before resetting 2FA devices on an account. So like I said, you can mess with your time a bit and get a correct code because you're not far off it, much easier than waiting 30 days.

[usahero]

I admit I'm a retard but this would of at least saved me.

2FA has been there since the update too. mcxNOW doesn't store or use emails for verification but does give users the choice of Google Authenticator as a second auth device.

I'm unable to setup my 2FA using Google Authenticator. I asked other users on mcxNOW chat and they told me they experience the same issue. Some recommended I try to enter the key manually instead of scanning the QR code but it still won't accept it.

Please advice what I should do.

Switch to white theme and scan the qr code there. If this doesn't work, then insert it manually.

Your 2fa device has to be synchronized. You do that in the settings->time correction for codes->sync now in the Google Authenticator.

[mrtchipr]

Thank you for the help guys.

I tried it manually and I still got the same error... but it's finally resolved!

For those of you that might find this in future, do what usahero suggested:

Your 2fa device has to be synchronized. You do that in the settings->time correction for codes->sync now in the Google Authenticator.

Thanks, you're my USA Hero

[TheRealSolid]

The recent update to mcxNOW actually improved the handling of google auth 2FA. I'm a bit more lenient with 2FA devices that have wrong time. Seems many are 30 seconds behind or in front of "reality", so it should be a lot smoother with current update.