email breakin

[bello]

my ex broke into(hacked) my yahoo email via business web site I was working on for myself through dreamweaver application- I'll spare you the drama...
but does this sound feasible to anyone? and I'm worried that they're still
accessing my account.
also, it would be great to return the favor- it may not be right but it would be just...if anyone knew where i could find an app. or recipe to do so it
would be great to show them how it feels to be violated- and make possibly them stop breaking in.
thanks for your time-

[Napster]

I would say, "Do not repay evil for evil."

Peace is the best answer, but if she will not cooperate, bring out the big guns.

I'd install Bonzi Buddy 3x on her computer hahahaha

I'll give you an answer but you must explain the situation. How does one go about using dreamweaver to hack into a yahoo email account? Can you just elaborate a little more? The story doesn't make sense.

[R4D10Active]

I know a way to make them feel violated.... turn them in to the police if they hacked anything.... then they would definitely "feel" violated hahah

[bello]

Hi-
thanks for your consideration-
lets see if I can make this make sense...
I was working on my website using the dreamweaver app.-
and yahoo hosts my site (i thought it was cheap at the time- what
can I say). Anyway I was having trouble indexing the pages so she suggested I send them to her i.e. give them access to them so them (i think it was via Dreamweaver)- what came out (during later altercation) was that she used
Dreamweaver to de-encrypt my yahoo password...
this is supposedly what happened- I dunno... does this make sense to you?
thanks again for your time-

[Napster]

first off, why is your ex more nerdy than you are with computers? Second off, is your yahoo hosting password the same as your yahoo email password?

[vee_ess]

It is feasible for someone to steal a username/password stored in dreamweaver fairly easily. It had nothing to do with Yahoo!'s services, so blaming them for being 'cheap' is an invalid assertion; any service you went with would be accessible to anyone who you've basically handed the password to.

First thing to do should be obvious, change your damn password!
Second, if you think you have credible proof that your ex is accessing your email, get a lawyer, and the lawyer may be able to legally attain your ex's system to analyze data on the system that would prove they accessed your account, though it is unlikely that you have or will be able to attain such proof.

Lastly, forget trying to hack them back. It's not easy to do for those with some hacking skills and advanced computer knowledge. It's an intuitive art requiring extensive network security knowledge and experience. It's something that you cannot do.

[bello]

well-
I appreciate your less than implied judgement on my tawdry
computer abilities- you're right what can I say...
she does web design for a living and art on the side-
I do all other kinds of design for a living ( I design and build)
and I do art. Shes a bit better at computers than I am-
and i'm a little futher along art-wise...the lord givith and the lord taketh
away... and in this case he helped her take away my entire email history.
Secondly, email and host password are the same-
third- wasn't casting aspersions on yahoo services-
thanks again

[vee_ess]

I apologize for having such a condescending tone.
Quite honestly, the hacking your making reference to is something that I don't believe anyone on this site would be capable of. Hacking Yahoo! or Gmail is a huge feat, and there is no how-to. Plus with their active security algorithms and monitoring would mean you would have to have extremely fast equipment and a big toolbox of hacks.

I did assume you were meaning that Yahoo!'s services were lacking quality, and I am sorry for making such an assumption.

Also, I know it may be a pain to change the passwords for those services but I've seen this before. People hate to change their passwords even once they are compromised, but a compromised password is useless and you will only further your problems by keeping it.

[R4D10Active]

Quote:

Originally Posted by bello

Secondly, email and host password are the same

A good security practice to follow is to use different passwords for (if possible) everything. An easy methodology to follow, I have found, is to define two or possibly 3 base passwords and 2 or 3 numeric pins and then mix them all.

For example:
Base 1 = One
Base 2 = Lame
Base 3 = Password
Pin 1 = 1234
Pin 2 = 6789
Pin 3 = 5678

Note: Remember to choose bases and pins that mean something to you but would not be easily guessed by someone else. (i.e. your birthday, your wife or girlfriends name) I mention this only because the sysadmin at my job uses his wifes name as his one and only password. From the backup servers to the finance and accounting database, all the same password. So you can see that if one password is compromised the entire system is compromised.

I digress, so back to this method of password "compilation" as it were. You can then take a combination of the Bases or Pins (OneLamePassword, Password1234LameOne5678, etc.) and as long as you remember your Bases and Pins you shouldn't have a hard time with assigning different passwords for everything.

If you are one of these people who can't remember passwords and usually store them all in a txt file , I hope you can see an advantage to this method. Now you can store the password broken down into Bases and Pins, not the password itself. So you still have to remember the Bases and Pins themself but not the password.
For example:

Your password (using the Bases and Pins described above) to gmail.com is
Password1234LameOne5678
You haven't signed on to gmail in a while and you forget this password, but you have a txt file on your pc with the following information in it.

gmail = Base3Pin1Base2Base1Pin3

As you can see your password isn't in plain text and this "trick" serves only as a reminder. If possible I would stay away from storing any sort information regarding usernames or passwords locally. On that note, whenever your browser prompts to remember passwords select NO. I may get into this in another post or article later but for now I am just saying NO.

Using this method to assigning passwords is only one of many ways I personally choose passwords and is by no means the most secure means of doing so.

Either way, you should change your passwords frequently (every 60 to 90 days if possible) I would also recommend, vehemently, to change your passwords now that you have been compromised.

[Napster]

Quote:

Secondly, email and host password are the same-

figured.

Learn Networking and Linux. Then, whois.com her, trace her IP, find her open ports, infiltrate, map her machine/network. Take her out.

jk. Wouldn't be ethical. I'd be impressed if you could do it though