Consider this a PSA. As you may or may not know there were some trackers recently compromised. As a result the bad actors who compromised the tracker servers have threatened blackmailing the staff and users. So with that said; please be smart about your stuff. Here are a few pointers that can help you.

1. Don't use the same login credentials. - One place compromised... all places compromised.
2. Use different email accounts - same as above; this will help reduce the likelihood of someone getting into all the accounts
3. Don't use your real name - Think about what you are doing, do you want your actual name associated with it? Obfuscate as much information as you can.
4. Use VPNs - helps with anonymity
5. Seedboxes... this adds another layer.
6. Use a password manager, one that is offline (aka you download and install it) - this way you can use strong passwords and not forget them
7. Update your credentials often. - things don't stay safe forever. You need to update the credentials at least once or twice a year (my personal suggestion is more frequent than that).

If your a member of a tracker that was compromised and if you use the same username you should contact the staff of the other site. Request to have the name changed. This will help you and the others on that community.

Originally Posted by buttlove

Consider this a PSA. As you may or may not know there were some trackers recently compromised. As a result the bad actors who compromised the tracker servers have threatened blackmailing the staff and users. So with that said; please be smart about your stuff. Here are a few pointers that can help you.

1. Don't use the same login credentials. - One place compromised... all places compromised.
2. Use different email accounts - same as above; this will help reduce the likelihood of someone getting into all the accounts
3. Don't use your real name - Think about what you are doing, do you want your actual name associated with it? Obfuscate as much information as you can.
4. Use VPNs - helps with anonymity
5. Seedboxes... this adds another layer.
6. Use a password manager, one that is offline (aka you download and install it) - this way you can use strong passwords and not forget them
7. Update your credentials often. - things don't stay safe forever. You need to update the credentials at least once or twice a year (my personal suggestion is more frequent than that).

If your a member of a tracker that was compromised and if you use the same username you should contact the staff of the other site. Request to have the name changed. This will help you and the others on that community.

What's your thought on same username, same email but a different password?

Originally Posted by hastybuns

What's your thought on same username, same email but a different password?

Having different passwords on different sites is a must. It's better that you request a username change if possible when one site has security issues, i.g. compromised. That saves a lot of time and efforts for both sides: you and your other sites.

Same email address, same username might be a must when you register an account from an invite sent from a friend on another website. But that also causes troubles, say, you constantly get PMs about your failed login. Staff will also be a little upset when you have to many failed logins and they don't want to see their users being under attacks. Your email address might be under attack too.

On some services, when you have too many failed logins, your account will be locked and you can only unlock your account by password recovery.

Originally Posted by zhanglin

Having different passwords on different sites is a must. It's better that you request a username change if possible when one site has security issues, i.g. compromised. That saves a lot of time and efforts for both sides: you and your other sites.

Same email address, same username might be a must when you register an account from an invite sent from a friend on another website. But that also causes troubles, say, you constantly get PMs about your failed login. Staff will also be a little upset when you have to many failed logins and they don't want to see their users being under attacks. Your email address might be under attack too.

On some services, when you have too many failed logins, your account will be locked and you can only unlock your account by password recovery.

Well said, but I still prefer same username for Notability, reliability, status and ofc TRUST!

Originally Posted by hastybuns

What's your thought on same username, same email but a different password?

The same username isn't terrible. I try to change it up, though.

I will add that you really need to look into what peer's you download/upload when torrenting from your residential ISP IP address.

I recommend to use Qbittorrent client. It's excellent and allows you to ban peers.

1) Ban all residential users from USA/UK/CANADA/GERMANY/RU/SPAIN/FRANCE/AU/NZ/CHINA (ALL OF ASIA BASICALLY)/MIDDLE EAST (ALL COUNTRIES)
2) Only allow seedbox peers when downloading/uploading the following are fine - feralhosting(UK)/whatbox(CA/NL)/xvirik(NL)/seedhost(NL)/ultraseedbox(NL)/dediseedbox(UK)/seedboxes.cc(NL - has IP range starting with 185.XXX.XX and 46.XXX.XXX)
3) Residential IP's from NL/SWE/DK/FIN/IS/NOR are generally OK but caution is always warrented. I ban all residential IP's from these countries
4) When upgrading to a new version of Qbittorrent when uninstalling previous version do not check the box "clear cache" because that has the ban list in it.
5) Always use a trusted vpn. This is a must. Change exit server often.

Seedbox tips.

1) Ask to change IP of seedbox often. This may cost a few dollars from the provider but it's better security.
2) Sign up to seedbox with anonymous email. protonmail.com & tutanota.com are the 2 best.
3) Pay in bitcoin or other anonymous payment option.
4) Always use a vpn or tor to login to seedbox web gui or when downloading from seedbox.

Torrent sign up tips.

1) Use anonymous email from protonmail.com or tutanota.com to sign up.
2) Use different user names and passwords. Passwords should be at least 32 characters with special characters and numbers with capitial letters. Make it random.
3) Use a vpn to signup and browse the site. Remember the exit server in case you can only log in via 1 IP address. Use tor if the site allows it.