KegLand Questions and Answers

gas guyz
Advertise with us
shop deals on amazon
Shop deals on ebay
Australia & New Zealand Homebrewing Forum

Help Support Australia & New Zealand Homebrewing Forum:

This site may earn a commission from merchant affiliate links, including eBay, Amazon, and others.
Half-baked said:
I think they mean: the password length required is now longer than it used to be
Click to expand...
Yeah, but what @donald_trub is saying is the only way they could know your old password length is if they stored it in plaintext in the old system.

This is very very bad, nobody should have been doing that 15 years ago, let alone now.

Hey @KegLand-com-au can you please confirm the new site stores passwords as salted hashes, if they are not you must get onto your webdevs and insist this is fixed.
 
KegLand-com-au said:
sorry missed that one. The new Core Actuator Mini Regulator should have already been finished however the corona virus and CNY is causing some additional delays unfortunately. I think we will get this in about 1-2 months. So you might miss out for your camping trip unfortunately.
Click to expand...
I've had the IPA virus for over 20 years must say it slows me down for the new year
 
donald_trub said:
Can I just point out how totally unacceptable this is? The only way you could know our password lengths is if our passwords were being stored in plaintext. Cryptographic hash functions produce a fixed-length output.

Since you're handling our credit card numbers I expect you to follow very basic security mechanisms that even a high schooler would know to turn on.
Click to expand...
if you buy stuff it goes to an external site - be surprised if that meant they're storing credit card numbers...
 
jibba02 said:
Because you can no longer log in [emoji1787]
Click to expand...

Yes, but if they were following best practices (and this isn't even "best practices" so much as it is "the bare minimum for anyone handling logins to any remote system") they can't know the length of a stored password.

Now, they could measure it during login, but if they were doing that they could just let it login and immediately force a password reset. They didn't do that - they disabled all the too-short password accounts in advance, something they would not have been able to do unless they knew the password length.
 
@donald_trub quoted an old KL post saying that if passwords weren’t long enough they would need to be updated.

He didn’t substantiate beyond that why he thought KL knew his password length (although presumably he needed to reset his password at some point too)...

If there is any reason beyond that, like an email from KL saying his password is X characters, would be good to know, otherwise it’s not clear why there’s any problem
 
I replaced my password with one exactly the same length with no issue, no it wasn’t the same password !
Perhaps when the new “rule” came in all account passwords had to be reset regardless of length?
 
donald_trub said:
Can I just point out how totally unacceptable this is? The only way you could know our password lengths is if our passwords were being stored in plaintext. Cryptographic hash functions produce a fixed-length output.

Since you're handling our credit card numbers I expect you to follow very basic security mechanisms that even a high schooler would know to turn on.
Click to expand...

We can't see your password on the back end as they are encrypted. A number of months ago when the magento upgrade went through we started to get notifications of errors that people could not log in. It has been through these errors that we know the password length is not suitable. Not because we can see your password. We are able to set a password from the back end of the website but we can't see the passwords. This is the same with other customers using Magento CMS too. Magento is probably one of the most popular CMS systems for large online retailers.
 
mud13s said:
I replaced my password with one exactly the same length with no issue, no it wasn’t the same password !
Perhaps when the new “rule” came in all account passwords had to be reset regardless of length?
Click to expand...

Yes that might be the case too. If you can't log in for some reason we would generally say to customers you might need to change your password. With that said it can be for other reasons too. For instance we have had a duplicate account this can also cause an issue sometimes too. So if we have two accounts with the same email this can also cause a problem that we manually have to delete one of the accounts on the back end but we would generally assume invalid password length as this is more probable.
 
DazGore said:
Anyone bought the Nukatap faucets yet? Thoughts?
Click to expand...

Yes would be keen to hear from you guys. We have started shipping these already but we would ideally like to know what you think as we are in the process of discontinuing the Intertaps. RIP. The Nukataps are still trying to finish the FC Nukatap and also finish the cremer shuttle for these taps too. Do you guys have any other features you want us to work on?
 
KegLand-com-au said:
Yes would be keen to hear from you guys. We have started shipping these already but we would ideally like to know what you think as we are in the process of discontinuing the Intertaps. RIP. The Nukataps are still trying to finish the FC Nukatap and also finish the cremer shuttle for these taps too. Do you guys have any other features you want us to work on?
Click to expand...
Some people like the black chrome look, not me, but it might be worth considering.
 
KegLand-com-au said:
Yes would be keen to hear from you guys. We have started shipping these already but we would ideally like to know what you think as we are in the process of discontinuing the Intertaps. RIP. The Nukataps are still trying to finish the FC Nukatap and also finish the cremer shuttle for these taps too. Do you guys have any other features you want us to work on?
Click to expand...

The “beer engine” spout that was originally going to be made for the Intertap faucets would be good.
Also an option for no black logo on would be great, I’m another that thinks it looks much better with just polished SS (like on the Intertap).
 
Yeah, seeing that was a bit of a worry to say the least. Cracking must be occurring for it to require a mould change? Do those who haven't had a chance to brew many batches with it yet just have to wait and see?
 
I have replaced some perfectly ok ultratap FCs with nukataps. Got rid of the hollow pours I was annoyed with!
I’m running the fc disconnects so fc taps was unnecessary. Also confirm the spouts are interchangable (as advertised).

Now looking at the grand deluxe 3 door to replace my ancient 3 door commercial fridge. Just a bit nervous about $$$hipping.

KegLand-com-au said:
Yes would be keen to hear from you guys. We have started shipping these already but we would ideally like to know what you think as we are in the process of discontinuing the Intertaps. RIP. The Nukataps are still trying to finish the FC Nukatap and also finish the cremer shuttle for these taps too. Do you guys have any other features you want us to work on?
Click to expand...
 

Similar threads

Oeck
Oeck - A home brewed next-generation VPN.
Replies
5
Views
5K
ozdevil
ozdevil
KegLand-com-au
KegLands New Springvale Warehouse - Looking for Staff
2
Replies
26
Views
13K
laxation
laxation
KegLand-com-au
Micro, Mini Keg Tap, Portable Keg Systems, for BBQ, Camping, Travel
2
Replies
25
Views
10K
KegLand-com-au
KegLand-com-au
brendo
Brewing gear, keg fridge, bar and beer engines
2
Replies
33
Views
7K
brendo
brendo
SamT
Home Brew Master @ The Vic Hotel Enmore
Replies
3
Views
3K
Dan Pratt
Dan Pratt

Latest posts

Back
Top