Server rentals :: NFOservers.com

Yes, looks like FB just requires a login for proxies/VPNs. I don't use a VPN most of the time and didn't know they did this. Presumably it's so they can track and monetize users more thoroughly. I do not appreciate it.

Odd. Maybe they're doing some A/B testing there, or they treat apparent proxy IPs differently.

We just post little bits there that don't justify a full-blown news post. Possibly I can create a new forum to double-post here.

https://www.facebook.com/nfoservers is not requiring me to log in to see anything on a new incognito window. It has an annoying banner advertisement at the top and bottom, but everything is functional (news can be expanded, all comments viewed, etc.). hiimcody1 is definitely aware of all of the same...

Any important news is posted to Facebook and here, or to users/event logs accounts directly. You are welcome to delete your Facebook account if you wish. A Facebook account is not needed to read the Facebook feed. The FB->Twitter plugin broke years ago and Twitter is such a terrible mess right now t...

There would have to be some merging functionality, and further communications, but I don't have details, since I have not explored it in depth.

Not a high priority for the forums to have MFA/2FA/2SV, since an attacker wouldn't be able to do much damage (nothing could be deleted, for instance). But it's something we can consider. We have thought about combining the forums login with the login from the main site but have not implemented that....

We're also here to provide service and help with instructions or other assistance if any user can't access services.

iraqiboy90, I've made an official post now, as well!

We've also made some other minor behind-the-scenes security improvements, such as enhanced CSRF protection and tokenized login credentials.

We added 2-Step Verification as an option last month! For increased security, we recommend that customers enable this feature through the control panel, under "My account". Using 2SV means that an extra code will be sent to your email when a log in is attempted (we also support authenticat...

Passwords are not reset through a payment source and that has never been the case. Accounts can, however, be recovered through a payment source, and the option is available on the login page. It is listed as "Recover login name or lost email access". It was important to turn on 2-step veri...

Naleksuh, you forgot that if a customer no longer has access to email, the account can still be recovered through any valid payment source. So, any customer who has a current service will be able to readily regain access. Losing access to your email account is still a huge deal and will cause all so...

Hmm. No reason that I can think of for it happening on this end, apart from what TimeX said. If I see it happen to me personally, I will be able to investigate further in depth.

Is your browser string or IP address changing? These could cause your token to no longer validate. If you're curious about the cookie lifetime, you should be able to check that through your browser's development tools. login_logout.pl should be fixed to work around your https issue now. That http re...

Sorry, I meant that the form didn't submit to a HTTP link. It submitted to HTTPS, and it was handled properly. The HTTP redirect that it responded with just that -- a simple redirection. When a client submits a HTTP request, our site automatically redirects to the HTTPS version, and that second redi...

The form wasn't submitted via HTTPS. That was just a redirect after the submission.

Either type of link is fine. http:// links don't need to be supported nowadays and there isn't really a reason to support them with the generic //.