open All Channels
seplocked EVE General Discussion
blankseplocked New EVE Online forums temporarily disabled
 
This thread is older than 90 days and has been locked due to inactivity.


 
Pages: first : previous : ... 11 12 13 14 [15] 16 17 18 19 ... : last (26)

Author Topic

Jon Taggart
State War Academy
Posted - 2011.04.10 17:20:00 - [421]
 

Originally by: Sullen Skoung
Originally by: Hel O'Ween
And I remind you that Cat reported the issue first and then - when his warning got ignored - demonstrated it for all to see. This was the time CCP finally got the message and pulled the plug.


I think this is the part that Sreegs is trying to get us to prove

Will have to wait until the forums are back up. The link to the test forums provided here does not work.

Akita T
Caldari Navy Volunteer Task Force
Posted - 2011.04.10 17:23:00 - [422]
 

Originally by: Jon Taggart
Will have to wait until the forums are back up. The link to the test forums provided here does not work.

https://testforums.evegate.com/ -> "The page cannot be displayed because an internal server error has occurred."
Neutral

Sullen Skoung
Posted - 2011.04.10 17:23:00 - [423]
 

Edited by: Sullen Skoung on 10/04/2011 17:23:43
Originally by: Jon Taggart
Originally by: Sullen Skoung
Originally by: Hel O'Ween
And I remind you that Cat reported the issue first and then - when his warning got ignored - demonstrated it for all to see. This was the time CCP finally got the message and pulled the plug.


I think this is the part that Sreegs is trying to get us to prove

Will have to wait until the forums are back up. The link to the test forums provided here does not work.


well the reported part was what I was talking about
There are pics showing the demonstrated part already lol

Mortania
Minmatar
No Compromise
Gentlemen's Agreement
Posted - 2011.04.10 17:26:00 - [424]
 

I just wanted to post to say that's one heck of a flame-******ant suit that you've got Sreegs.

I applaud you wading into the lion's den.

CCP Sreegs

Posted - 2011.04.10 17:26:00 - [425]
 

Originally by: Sullen Skoung
Edited by: Sullen Skoung on 10/04/2011 17:21:43
Originally by: Hel O'Ween
And I remind you that Cat reported the issue first and then - when his warning got ignored - demonstrated it for all to see. This was the time CCP finally got the message and pulled the plug.


I think this is the part that Sreegs is trying to get us to prove



Nobody has to prove anything about anyone's actions on the forums I have full logs of everything.

Sullen Skoung
Posted - 2011.04.10 17:35:00 - [426]
 

Originally by: CCP Sreegs
Originally by: Sullen Skoung
Originally by: CCP Sreegs


I'm sure a lot of people work for a lot of good companies. What I was stating was that if anyone has an actual evidence of the malfeasance that was suggested they're welcome to email it to me.


love the defense by way of "prove we got the emails" when theres no way you actually can do that short of working at CCP.


I said if you have evidence send it to me. I never said prove we got them. If you're going to try to reword a post you should probably not do so with the complete text of the statement quoted.


why do we need to send you evidence?

Originally by: CCP Sreegs


Nobody has to prove anything about anyone's actions on the forums I have full logs of everything.

Akita T
Caldari Navy Volunteer Task Force
Posted - 2011.04.10 17:37:00 - [427]
 

Originally by: Sullen Skoung
why do we need to send you evidence?

Because, apparently, the QA team is not.

Sullen Skoung
Posted - 2011.04.10 17:39:00 - [428]
 

Originally by: Akita T
Originally by: Sullen Skoung
why do we need to send you evidence?

Because, apparently, the QA team is not.



you gotta read all the quotes lol

Jon Taggart
State War Academy
Posted - 2011.04.10 17:42:00 - [429]
 

Originally by: Sullen Skoung
Originally by: Akita T
Originally by: Sullen Skoung
why do we need to send you evidence?

Because, apparently, the QA team is not.



you gotta read all the quotes lol

Any word when the dev blog detailing the goings-on of the weekend comes out? Skreegs, or whoever is going to spear-head that, will have to prepare the flame suit again for the next threadnaught.

Erichk Knaar
Caldari
Noir.
Noir. Mercenary Group
Posted - 2011.04.10 17:43:00 - [430]
 

Originally by: Akita T
Originally by: Sullen Skoung
why do we need to send you evidence?

Because, apparently, the QA team is not.


Sounds to me like some QA with specific skills is needed. Game QA will never find this type of thing. Most black-box web QA won't either.

Akita T
Caldari Navy Volunteer Task Force
Posted - 2011.04.10 17:45:00 - [431]
 

Originally by: Sullen Skoung
you gotta read all the quotes lol

Yeah, I know, I was purposefully ignoring that line of the argument because it's pointless.
You are arguing that CCP received warning of it before it happened (which CCP is not actually denying), CCP Sreegs is arguing that nobody who JUST reported it and did nothing else would get banned.
Those two arguments are not incompatible.
CCP could have been warned, the other guy could have been showing off, CCP might have not reacted quite as fast as we hoped, the guy might have been banned.
I'm not saying it's what happened, but it's probably what happened.
Twisted Evil

Sullen Skoung
Posted - 2011.04.10 17:47:00 - [432]
 

Edited by: Sullen Skoung on 10/04/2011 17:47:03
no, I was saying that Sreegs said to prove such we needed to send evidenve then tells us we dont need to send it cause he has all the logs

Akita T
Caldari Navy Volunteer Task Force
Posted - 2011.04.10 17:49:00 - [433]
 

Originally by: Sullen Skoung
no, I was saying that Sreegs said to prove such we needed to send evidenve then tells us we dont need to send it cause he has all the logs

That's not what he said Smile
Train "evasive statement reading" to L4.

Mr Pikey
Caldari
Posted - 2011.04.10 17:50:00 - [434]
 

Originally by: CCP Sreegs

Snip;

Nobody has to prove anything about anyone's actions on the forums I have full logs of everything.


But the logs always show nothing Wink

Ban Doga
Posted - 2011.04.10 17:55:00 - [435]
 

Originally by: CCP Sreegs
I'm saying exactly what I said.

That's great, I'm doing the same.
I think more people should do it...

Miilla
Minmatar
Hulkageddon Orphanage
Posted - 2011.04.10 17:57:00 - [436]
 



Biatch fight! I called it first!



LtCol Laurentius
Caldari
Digital Fury Corporation
Northern Coalition.
Posted - 2011.04.10 18:10:00 - [437]
 

Originally by: CCP Sreegs
Originally by: LtCol Laurentius
Edited by: LtCol Laurentius on 10/04/2011 14:48:57
Originally by: CCP Sreegs

We don't discuss administrative actions. At all. Ever. No matter how many times you ask, demand or otherwise say the same thing over and over and over again. Our policy is simply that we don't, and to be fair you only have access to enough information to speculate.

I'm not claiming. I'm stating outright that customer data was never at risk. We've also said there will be a blog which will detail what occurred and what was wrong.


It doesnt matter. The public image you have created is that you **** over the whistleblower, while claiming everything is allright.


If I don't talk about administrative actions I'm really not sure how I could have created an opinion about one. I'm pretty sure what you mean to say is "The public image that SOMEONE ELSE has created".


Not really. You HAVE banned the wistleblower. And the way you communicate OFFICIALLY (in news and devblogs) gives the following message: "YOU discovered the securityholes yourselves" (which is blatant bull****), and "there is no reason to be concerned about security" (more blatant bull****). Based on this, players will form an opinion. And it is not favourable.

Miilla
Minmatar
Hulkageddon Orphanage
Posted - 2011.04.10 18:19:00 - [438]
 

Edited by: Miilla on 10/04/2011 18:22:55

Originally by: LtCol Laurentius
Originally by: CCP Sreegs
Originally by: LtCol Laurentius
Edited by: LtCol Laurentius on 10/04/2011 14:48:57
Originally by: CCP Sreegs

We don't discuss administrative actions. At all. Ever. No matter how many times you ask, demand or otherwise say the same thing over and over and over again. Our policy is simply that we don't, and to be fair you only have access to enough information to speculate.

I'm not claiming. I'm stating outright that customer data was never at risk. We've also said there will be a blog which will detail what occurred and what was wrong.


It doesnt matter. The public image you have created is that you **** over the whistleblower, while claiming everything is allright.


If I don't talk about administrative actions I'm really not sure how I could have created an opinion about one. I'm pretty sure what you mean to say is "The public image that SOMEONE ELSE has created".


Not really. You HAVE banned the wistleblower. And the way you communicate OFFICIALLY (in news and devblogs) gives the following message: "YOU discovered the securityholes yourselves" (which is blatant bull****), and "there is no reason to be concerned about security" (more blatant bull****). Based on this, players will form an opinion. And it is not favourable.



The "whistleblower" who "exploited" the issue instead of posting about it publically anonymously.

He crossed the line when he "exploited" the hole.

Whistleblower

A whistleblower (whistle-blower or whistle blower)[1] is a person who tells the public or someone in authority about alleged dishonest or illegal activities (misconduct) occurring in a government department, a public or private organization, or a company. The alleged misconduct may be classified in many ways; for example, a violation of a law, rule, regulation and/or a direct threat to public interest, such as fraud, health/safety violations, and corruption. Whistleblowers may make their allegations internally (for example, to other people within the accused organization) or externally (to regulators, law enforcement agencies, to the media or to groups concerned with the issues).



Elyssa MacLeod
Posted - 2011.04.10 18:25:00 - [439]
 

so miilla, what did they give you to turn you into a CCP kiss ass?

cause you used to be a rabblerouser lie the rest of us, now all you do in troll us and kiss CCP's ass.

Miilla
Minmatar
Hulkageddon Orphanage
Posted - 2011.04.10 18:26:00 - [440]
 

Originally by: Elyssa MacLeod
so miilla, what did they give you to turn you into a CCP kiss ass?

cause you used to be a rabblerouser lie the rest of us, now all you do in troll us and kiss CCP's ass.


I don't take sides :)


Ban Doga
Posted - 2011.04.10 18:26:00 - [441]
 

Edited by: Ban Doga on 10/04/2011 18:26:35
Originally by: Miilla
Edited by: Miilla on 10/04/2011 18:22:55
The "whistleblower" who "exploited" the issue instead of posting about it publically anonymously.



How can anyone say there's a security hole without exploiting it?
"Uhm, your client is sending data to your server. If the server does not validate this data you have a security hole..."?

Grimpak
Gallente
Midnight Elites
Echelon Rising
Posted - 2011.04.10 18:27:00 - [442]
 

Originally by: Miilla
The "whistleblower" who "exploited" the issue instead of posting about it publically anonymously.

He crossed the line when he "exploited" the hole.

Whistleblower

A whistleblower (whistle-blower or whistle blower)[1] is a person who tells the public or someone in authority about alleged dishonest or illegal activities (misconduct) occurring in a government department, a public or private organization, or a company. The alleged misconduct may be classified in many ways; for example, a violation of a law, rule, regulation and/or a direct threat to public interest, such as fraud, health/safety violations, and corruption. Whistleblowers may make their allegations internally (for example, to other people within the accused organization) or externally (to regulators, law enforcement agencies, to the media or to groups concerned with the issues).


and there you go. Altho I'm more in favour of CCP being a bit light-handed on him, as in giving him a tempban (he didn't do anything that can be considered harmful, besides pranks harmless pranks), punishment still needs to be served.

Miilla
Minmatar
Hulkageddon Orphanage
Posted - 2011.04.10 18:28:00 - [443]
 

Edited by: Miilla on 10/04/2011 18:30:31
Originally by: Ban Doga
Edited by: Ban Doga on 10/04/2011 18:26:35
Originally by: Miilla
Edited by: Miilla on 10/04/2011 18:22:55
The "whistleblower" who "exploited" the issue instead of posting about it publically anonymously.



How can anyone say there's a security hole without exploiting it?
"Uhm, your client is sending data to your server. If the server does not validate this data you have a security hole..."?


So post it as theory then, but don't EXPLPOIT it, it is clearly obvious he exploited it from his self bragging posts on SHC forum.

"hey look at me, look what I can do etc etc" even the forum thread was titled who wanted to post as somebody else.



Elyssa MacLeod
Posted - 2011.04.10 18:30:00 - [444]
 

Originally by: Miilla
Originally by: Elyssa MacLeod
so miilla, what did they give you to turn you into a CCP kiss ass?

cause you used to be a rabblerouser lie the rest of us, now all you do in troll us and kiss CCP's ass.


I don't take sides :)




yeah sure you dont lol
how much isk or PLEX did it take? lol

Ban Doga
Posted - 2011.04.10 18:34:00 - [445]
 

Originally by: Miilla
Edited by: Miilla on 10/04/2011 18:30:31
Originally by: Ban Doga
Edited by: Ban Doga on 10/04/2011 18:26:35
Originally by: Miilla
Edited by: Miilla on 10/04/2011 18:22:55
The "whistleblower" who "exploited" the issue instead of posting about it publically anonymously.



How can anyone say there's a security hole without exploiting it?
"Uhm, your client is sending data to your server. If the server does not validate this data you have a security hole..."?


So post it as theory then, but don't EXPLPOIT it, it is clearly obvious he exploited it from his self bragging posts on SHC forum.

"hey look at me, look what I can do etc etc" even the forum thread was titled who wanted to post as somebody else.

There would be quite a lot of possible theories.
You can't be sure there is a weakness until you try (this is not like finding a hole in a fence, it's like finding a tunnel and guessing where it might lead)


You would get ignored pretty quickly (I'd assume) and in the story about the boy who cried wolf the wolf actually comes and no one believes it...

Miilla
Minmatar
Hulkageddon Orphanage
Posted - 2011.04.10 18:34:00 - [446]
 

Originally by: Elyssa MacLeod
Originally by: Miilla
Originally by: Elyssa MacLeod
so miilla, what did they give you to turn you into a CCP kiss ass?

cause you used to be a rabblerouser lie the rest of us, now all you do in troll us and kiss CCP's ass.


I don't take sides :)




yeah sure you dont lol
how much isk or PLEX did it take? lol


He denied me the oppertunity to use my paid for trolling service for the weekend. The agony was terrible. All because some know it all show off wanted to act big on the internet posting javascript signiture exploits.







Ban Doga
Posted - 2011.04.10 18:37:00 - [447]
 

Edited by: Ban Doga on 10/04/2011 18:37:44
Originally by: Miilla
Originally by: Elyssa MacLeod
Originally by: Miilla
Originally by: Elyssa MacLeod
so miilla, what did they give you to turn you into a CCP kiss ass?

cause you used to be a rabblerouser lie the rest of us, now all you do in troll us and kiss CCP's ass.


I don't take sides :)




yeah sure you dont lol
how much isk or PLEX did it take? lol


He denied me the oppertunity to use my paid for trolling service for the weekend. The agony was terrible. All because some know it all show off wanted to act big on the internet posting javascript signiture exploits.

Careful now.
Sreegs already said he talked to some people who remember they believe it was not possible to post Javascript.
And he really says what he said.

Kristina Vanszar
Caldari
Posted - 2011.04.10 18:40:00 - [448]
 

Edited by: Kristina Vanszar on 10/04/2011 18:40:09
Quote:
who remember they believe it was not possible


WTF!?

Barakkus
Posted - 2011.04.10 18:40:00 - [449]
 

Originally by: Elyssa MacLeod
so miilla, what did they give you to turn you into a CCP kiss ass?

cause you used to be a rabblerouser lie the rest of us, now all you do in troll us and kiss CCP's ass.


It's called not acting like a teenager...which I'm shocked that Miilla isn't doing so, but whatever....

You can disagree, but doing so in the manner many posters do on these forums is juvenile and frankly a lot of people around here need to grow the **** up and act like adults for once in their lives. Being a complete ass because it makes you look kewl in the internet, and there's no one sitting there to punch you in the face is just ****ing stupid.

Ban Doga
Posted - 2011.04.10 18:42:00 - [450]
 

Originally by: Kristina Vanszar
Edited by: Kristina Vanszar on 10/04/2011 18:40:09
Quote:
who remember they believe it was not possible


WTF!?


Sorry for paraphrasing.
The original statement was
Quote:
The word from the people who checked it earlier today was that FROM MEMORY they didn't believe script could be injected.


http://www.eveonline.com/ingameboard.asp?a=topic&threadID=1493904&page=13#364


Pages: first : previous : ... 11 12 13 14 [15] 16 17 18 19 ... : last (26)

This thread is older than 90 days and has been locked due to inactivity.


 


The new forums are live

Please adjust your bookmarks to https://forums.eveonline.com

These forums are archived and read-only