Pages: 1 [2] 3 :: one page |
|
Author |
Thread Statistics | Show CCP posts - 4 post(s) |
Rakshasa Taisab
Caldari Sane Industries Inc. Initiative Mercenaries
|
Posted - 2010.08.20 13:12:00 -
[31]
Originally by: Serpents smile
Originally by: CCP Wrangler ....that got in by mistake,.....
Lies! CCP is uber ebil!
It's a TARP! I tell you.
You know the kind of thing that happens when you're having lucid dreams during early morning hours and your hand is doing something your brain isn't really conscious of?
This is the same kind of thing.
|
Forum Mistress
|
Posted - 2010.08.20 13:18:00 -
[32]
TAAAAAAAAARRRRPPPPP!!! >< >< >< |
Lumy
Minmatar eXceed Inc. HYDRA RELOADED
|
Posted - 2010.08.20 13:20:00 -
[33]
Edited by: Lumy on 20/08/2010 13:20:25
Originally by: CCP Wrangler This was some form of fraud prevention tool that got in by mistake, we're in the process of removing it and if it's not gone by now it should be gone from the site soon.
You can't be serious...
Joomla! in EVE - IGB compatible CMS.
|
Jack Dant
Minmatar The Gentlemen of Low Moral Fibre
|
Posted - 2010.08.20 13:49:00 -
[34]
Originally by: CCP Wrangler This was some form of fraud prevention tool that got in by mistake, we're in the process of removing it and if it's not gone by now it should be gone from the site soon.
So someone copy/pasted the wrong html to warn about vulnerable flash players?
|
scrambled
|
Posted - 2010.08.20 14:01:00 -
[35]
Originally by: CCP Wrangler This was some form of fraud prevention tool that got in by mistake, we're in the process of removing it and if it's not gone by now it should be gone from the site soon.
Wrangler, I'm sorry but that's a load of bovine male *****. Things like that don't just go in "by mistake" - unless there's no release control on web content, which is something that you'd expect from halfway competent development teams.
Also the fact that nobody seemed to know what was up with it sort of indicates that either this was a case of the left hand not knowing what the right hand was doing, or a case of "let's see if anyone notices".
Beyond that, if this was a mistake (which I doubt), then you'd agree that the way the page is now would be the "finished" product that was intended to go live but was cancelled, and mistakenly made it? If so, my original point stands: no indications, no logo, no explanations, no nothing. So it still fails pretty damn hard on the epic fail scale.
You know, if I put my bitter vet hat on, I have to say back in 2003/2004, at least CCP folks could give straight answers even if the answer was an admission of guilt/****ups/whatever. These days what we get are reminiscent of that funny Iraqi information minister guy.
|
heheheh
The Scope
|
Posted - 2010.08.20 14:10:00 -
[36]
Inb the words of Zammo, just say no !!
|
Tippia
Sunshine and Lollipops
|
Posted - 2010.08.20 14:19:00 -
[37]
Originally by: scrambled Wrangler, I'm sorry but that's a load of bovine male *****. Things like that don't just go in "by mistake" - unless there's no release control on web content, which is something that you'd expect from halfway competent development teams.
I'm sorry but I really have to agree with this, and I'm fairly deep into the "stupid users only have themselves to blame" branch of laughing at website errors.
What you're telling us is that you have complete ****-ups (and while I won't bypass the language filter, I will not mince words on this matter either ù that is the the exact right and completely accurate term for this) messing with the part of the website that needs to be the most secure. This is not acceptable in any way, shape or form. No amount of glossing over this will help you. You allowed someone to install irrelevant and intrusive third-party data gathering tools on the part of your site that deals with account management and customer payments.
It doesn't matter that it was supposedly some "fraud protection" scheme ù what matters is the nature of it; that it goes after weak browsers; and, most importantly, that it got there "by mistake".
W T F?! ùùù ôIf you're not willing to fight for what you have in ≡v≡à you don't deserve it, and you will lose it.ö ù Karath Piki |
Jigoku Majo
|
Posted - 2010.08.20 14:36:00 -
[38]
"The logs show nothing"
|
scrambled
|
Posted - 2010.08.20 14:48:00 -
[39]
Originally by: Jigoku Majo "The logs show nothing"
They probably wouldn't, from reading devblogs and screwup explanations from GM's before it seems that release control, testing, and (for the website properties) dual staging are concepts that CCP hasn't quite mastered yet. That also means that there probably are no logs relating to who put what on the site and when they did it, and why, and who approved it, and who signed off on putting it in in the first place.
|
Khors
Amtek Inc
|
Posted - 2010.08.20 15:01:00 -
[40]
"Oh thank god, just when we were getting response about fixing lag this thing comes up so we can keep crying out how incompetent CCP are."
|
|
DeODokktor
Caldari Dark Templars The Fonz Presidium
|
Posted - 2010.08.20 15:14:00 -
[41]
Originally by: scrambled
They probably wouldn't, from reading devblogs and screwup explanations from GM's before it seems that release control, testing, and (for the website properties) dual staging are concepts that CCP hasn't quite mastered yet. That also means that there probably are no logs relating to who put what on the site and when they did it, and why, and who approved it, and who signed off on putting it in in the first place.
Since it's now been removed, it never actually happened... Wait until you get an account banned that's been on timecodes for 5 years, and ccp want your original CreditCard number to be given to them before they will unlock it.. Sometimes they go OTT on prevention and detection of "fraud"... My guess is that they were previewing this tech, or that they are using it and shouldnt have pushed those files for DL.. Needless to say, It will probably only see false positives, as people who do use stolen info will look to go around the tech.. ----------- Never Forget the joy of finding a main to link to a scammer alt. N-y-p-h-u-r ! ! |
Smagd
Encina Technologies Namtz' aar K'in
|
Posted - 2010.08.20 15:17:00 -
[42]
So, how many folks downloaded and installed this third party application you warn everybody about in so much depth?
What exactly does it do?
Are you going to contact victims about how to uninstall it?
How are you going to prevent similar stuff getting rolled out to your most sensitive web pages?
Is it too much asking for some proper communication instead of "Oops we made a mistake, sorry"?
Thank you for your attention.
|
Muscaat
ASCENTIS CORPORATION Free Worlds Alliance
|
Posted - 2010.08.20 15:37:00 -
[43]
Originally by: Tippia What you're telling us is that you have complete ****-ups (and while I won't bypass the language filter, I will not mince words on this matter either ù that is the the exact right and completely accurate term for this) messing with the part of the website that needs to be the most secure. This is not acceptable in any way, shape or form. No amount of glossing over this will help you. You allowed someone to install irrelevant and intrusive third-party data gathering tools on the part of your site that deals with account management and customer payments.
It doesn't matter that it was supposedly some "fraud protection" scheme ù what matters is the nature of it; that it goes after weak browsers; and, most importantly, that it got there "by mistake".
W T F?!
Quoted for unfortunate truth. ---------- EVE Markets - global price trends at your fingertips |
Tippia
Sunshine and Lollipops
|
Posted - 2010.08.20 15:48:00 -
[44]
Originally by: DeODokktor Since it's now been removed, it never actually happened... Wait until you get an account banned that's been on timecodes for 5 years, and ccp want your original CreditCard number to be given to them before they will unlock it.. Sometimes they go OTT on prevention and detection of "fraud"... My guess is that they were previewing this tech, or that they are using it and shouldnt have pushed those files for DL.. Needless to say, It will probably only see false positives, as people who do use stolen info will look to go around the tech..
àwhich is only further exacerbated by the fact that this tech works on what I suspect is a (vast) minority of the platforms. How useful will those logs be when only 10% (completely random number) are covered? ùùù ôIf you're not willing to fight for what you have in ≡v≡à you don't deserve it, and you will lose it.ö ù Karath Piki |
Shirley Serious
Amarr The Khanid Sisters of Athra
|
Posted - 2010.08.20 15:56:00 -
[45]
Originally by: Tippia which is only further exacerbated by the fact that this tech works on what I suspect is a (vast) minority of the platforms. How useful will those logs be when only 10% (completely random number) are covered?
some kind of Q&A thingie about this
"For those customers that have a native application, such as a video game client, we can integrate a native library into that client. Then you have native code access to the device, and you can collect all kinds of attributes from the device û hard drive serial number; depending on the operating system, you might have a specific device serial number provided by the OS; MAC [Media Access Control] address from network cards, and so on. You can also store the equivalent of cookies on the hard drive for later retrieval."
"Examples would be things that indicate the end user is trying to evade device recognition by things like turning off Flash and JavaScript, and going through an IP proxy. We then build a risk score around the transaction, so the subscriber can add that to a review queue."
Soo... does this mean the EVE client could be setup to do StuffÖ like poke browser settings to find out if they're running things like Noscript?
Yes. Yes, I am. |
Squat Hardpeck
State Protectorate
|
Posted - 2010.08.20 16:03:00 -
[46]
Grrr! I am angry!!! CCP did this on purpose to get a hold of MY information! This is purely illegal! "By mistake" my pasty white, humongous ass!
Because CCP is so incompetent, I've decided that I'll cancel my 78 accounts!!
GRrrrrr!!!
|
Barakkus
Onyx Industrial
|
Posted - 2010.08.20 16:23:00 -
[47]
Originally by: Shirley Serious
Originally by: Tippia which is only further exacerbated by the fact that this tech works on what I suspect is a (vast) minority of the platforms. How useful will those logs be when only 10% (completely random number) are covered?
some kind of Q&A thingie about this
"For those customers that have a native application, such as a video game client, we can integrate a native library into that client. Then you have native code access to the device, and you can collect all kinds of attributes from the device û hard drive serial number; depending on the operating system, you might have a specific device serial number provided by the OS; MAC [Media Access Control] address from network cards, and so on. You can also store the equivalent of cookies on the hard drive for later retrieval."
"Examples would be things that indicate the end user is trying to evade device recognition by things like turning off Flash and JavaScript, and going through an IP proxy. We then build a risk score around the transaction, so the subscriber can add that to a review queue."
Soo... does this mean the EVE client could be setup to do StuffÖ like poke browser settings to find out if they're running things like Noscript?
A lot of applications that use a copyright management scheme will read your hard drive serial number, that's why you have to reactivate a lot of programs if you replace the hard drive or buy a new system. Supposedly the serial number on hard drives is completely unique so a lot of people use it for copyright protection schemes. I actually use this method to validate registration on the database software I developed for work. I can turn off a remote client if I need to.
Originally by: CCP Dropbear
rofl
edit: ah crap, dev account. Oh well, official rofl at you sir.
|
Rita Zechs
|
Posted - 2010.08.20 19:06:00 -
[48]
Originally by: CCP Wrangler This was some form of fraud prevention tool that got in by mistake, we're in the process of removing it and if it's not gone by now it should be gone from the site soon.
It wasn't **** my **** got in here by mistake honest!
|
Cobalt Sixty
Caldari Genos Occidere
|
Posted - 2010.08.21 02:22:00 -
[49]
Originally by: CCP Wrangler This was some form of fraud prevention tool that got in by mistake, we're in the process of removing it and if it's not gone by now it should be gone from the site soon.
Got in by mistake.
Really.
|
Kern Hotha
|
Posted - 2010.08.26 15:21:00 -
[50]
Originally by: CCP Wrangler This was some form of fraud prevention tool that got in by mistake, we're in the process of removing it and if it's not gone by now it should be gone from the site soon.
What a load of ****. ---
|
|
Blane Xero
Amarr The Firestorm Cartel
|
Posted - 2010.08.26 15:32:00 -
[51]
Originally by: CCP Wrangler This was some form of fraud prevention tool that got in by mistake, we're in the process of removing it and if it's not gone by now it should be gone from the site soon.
This really does not inspire confidence. Care to explain how the hell this made it past Q&A on the deployment of the (assumingly new or revised) code?
It's kinda hard to miss, all things considered. I like to think I have a high tolerance for CCP woopsies, but for all the **** you shovel at us, this has it's own level of stink. _____________________________________ Haruhiist since December 2008
Originally by: CCP Fallout Been there. Done that. Need antibiotics.
|
Grez
Empire Assault Corp Dead Terrorists
|
Posted - 2010.08.26 15:33:00 -
[52]
If they use SVN (I assume they do), a branch merge with something like this could have easily slipped in by mistake if a member of the web team forgot to revert it. It happens. ---
|
Thogretor
|
Posted - 2010.08.27 09:00:00 -
[53]
Originally by: Grez If they use SVN (I assume they do), a branch merge with something like this could have easily slipped in by mistake if a member of the web team forgot to revert it. It happens.
Its a great habbit to throw code online straight from your source control, i mean, who needs testing anyway ?
|
Aera Aiana
Amarr
|
Posted - 2010.08.27 10:35:00 -
[54]
Originally by: Thogretor
Originally by: Grez If they use SVN (I assume they do), a branch merge with something like this could have easily slipped in by mistake if a member of the web team forgot to revert it. It happens.
Its a great habbit to throw code online straight from your source control, i mean, who needs testing anyway ?
I'm sure they never make any mistakes where you work. -
|
Muad' Dib
Gallente Firefly Inc.
|
Posted - 2010.08.28 11:38:00 -
[55]
Edited by: Muad'' Dib on 28/08/2010 11:41:13
Originally by: CCP Wrangler This was some form of fraud prevention tool that got in by mistake, we're in the process of removing it and if it's not gone by now it should be gone from the site soon.
Originally by: inovation site Online Gaming When it comes to MMOs and virtual worlds, fighting fraud isn't simply about stopping criminals, it's also about maintaining an environment that your masses find inviting. That means removing crooks and bullies that would chase off others, but without disruptive security measures that'd be just as unwelcome. The loss of a single player is unthinkable, much less a mass exodus. Thankfully, there's the protection of iovation.
Stop online criminals with device reputation Unlike most anti-fraud measures, which look at the user connecting to your site, iovation ReputationManagerÖ goes deeper to identify the computer being used. Then, checking against a dynamic, device history database over 350 million deep, we deliver a device reputation, exposing negative behaviors and connections, allowing you to banish those involved with types of fraud or abuse important to you. Investigative tools further catch bad guys by spotting characteristics consistent with fraud, even on a previously unknown device. And best of all, iovation works in real time, without disrupting the player or slowing down their experience.
Our device reputation service helps minimize:
* Credit Card Fraud * Virtual Asset Theft * Gold Farming * Chat Abuse * Cyber Bullying * Account Takeover * Excessive Quantities of Accounts * Terms of Service Violations
Mistake ? At least say that you thought it was a good ideea to introduce it, it sounds better than saying that your site admins are ****ing useless idiots who let any bit of software get inserted on the CC page.
Originally by: scrambled
Originally by: Jigoku Majo "The logs show nothing"
They probably wouldn't, from reading devblogs and screwup explanations from GM's before it seems that release control, testing, and (for the website properties) dual staging are concepts that CCP hasn't quite mastered yet. That also means that there probably are no logs relating to who put what on the site and when they did it, and why, and who approved it, and who signed off on putting it in in the first place.
There is no definitive proof that a polished product sells better than new features, is that it Wrangler ? --- I smack just for myself. Allow faction cap boosters to be traded via normal market ! |
Istvaan Shogaatsu
Caldari Guiding Hand Social Club
|
Posted - 2010.08.28 14:45:00 -
[56]
Quote: * Asset Theft
Bahahaha. Didn't work.
|
Jesslyn Daggererux
Non-Aligned Movement Biologic License Application The 0rphanage
|
Posted - 2010.08.28 16:11:00 -
[57]
Originally by: CCP Wrangler soon.
HAHAHHAHAHHAHAHHA! soon. ahh what a laugh. its always Soon with you guys.
Originally by: CCP Alice We take the security of our websites very seriously
AHAHHAHAHHAHA another funny one! NAMBLA, standing up and giving attention to your right to love. Also, we inspect things in an unbiased fasion. |
Bomberlocks
Minmatar CTRL-Q
|
Posted - 2010.10.08 12:04:00 -
[58]
Originally by: CCP Wrangler This was some form of fraud prevention tool that got in by mistake, we're in the process of removing it and if it's not gone by now it should be gone from the site soon.
Are we going to get an official statement and apology about this? I'm pretty close to unsubbing because of the microtransactions thing and this doesn't exactly make me feel like staying any longer.
|
Zeke Mobius
|
Posted - 2010.10.08 12:18:00 -
[59]
Edited by: Zeke Mobius on 08/10/2010 12:19:46
Originally by: Bomberlocks
Originally by: CCP Wrangler This was some form of fraud prevention tool that got in by mistake, we're in the process of removing it and if it's not gone by now it should be gone from the site soon.
Are we going to get an official statement and apology about this? I'm pretty close to unsubbing because of the microtransactions thing and this doesn't exactly make me feel like staying any longer.
Its always something with this company. Be it in-game or obviously outside of the game now. Of course they would say "I dont know about it" which I can fully say I dont believe CCP anymore. It goes from "we wont do microtrans" to "its on the PTS and making its way to the game"///
Whats next? CCP selling EVERYONES CONTACT DATA to someone? prolly already happened... I dont trust them and I imo think you should unsub because thats all ccp cares about is money. you as a user they could give ****all
oh yea and lets not forget OPTIONAL PATCH #6 lulz
|
Raieth Crimson
|
Posted - 2010.12.16 12:58:00 -
[60]
CCP your full of ****. software installations, specially covert installations, dont just magically make their own damn java scripting on your website ALL on their own. you put them there. stop lying to people and tell the god damned truth for once in your miserable icelandic lives.
|
|
|
|
|
Pages: 1 [2] 3 :: one page |
First page | Previous page | Next page | Last page |