Pages: [1] 2 :: one page |
|
Author |
Thread Statistics | Show CCP posts - 6 post(s) |
|
CCP Fallout
|
Posted - 2011.01.26 13:56:00 -
[1]
HTTPS has been enabled for the API, and CCP Stillman has all the details in his newest dev blog.
Fallout Associate Community Manager CCP Hf, EVE Online Contact us |
|
Daneel Trevize
Black Viper Nomads
|
Posted - 2011.01.26 14:02:00 -
[2]
W00t for low-hanging fruit! |
Lee Dalton
Sniggerdly Pandemic Legion
|
Posted - 2011.01.26 14:07:00 -
[3]
Free Ander. *** I AM A RUS HON SUPERSTAR |
Velonad Tyldamere
Caldari Blood Covenant Pandemic Legion
|
Posted - 2011.01.26 14:08:00 -
[4]
Free (B)Ander.
|
Darees
|
Posted - 2011.01.26 14:09:00 -
[5]
You should reward the security expert that helped discover this long standing flaw of the API system. |
Amarrchick009
GK inc. Pandemic Legion
|
Posted - 2011.01.26 14:12:00 -
[6]
Originally by: Velonad Tyldamere Free (B)Ander.
|
Falcun
Gallente North Eastern Swat Pandemic Legion
|
Posted - 2011.01.26 14:14:00 -
[7]
Originally by: Amarrchick009
Originally by: Velonad Tyldamere Free (B)Ander.
|
Odhak
|
Posted - 2011.01.26 14:15:00 -
[8]
Free Ander
|
|
CCP Stillman
|
Posted - 2011.01.26 14:16:00 -
[9]
Originally by: Amarrchick009
Originally by: Velonad Tyldamere Free (B)Ander.
Originally by: Velonad Tyldamere Free (B)Ander.
Originally by: Lee Dalton Free Ander.
Freeing a person's IP involves a petition. API petitions don't take priority over internet spaceships, so please be patient.
|
|
Lee Dalton
Sniggerdly Pandemic Legion
|
Posted - 2011.01.26 14:18:00 -
[10]
I think you will find he is banned from internet spaceships too.
Free Ander! *** I AM A RUS HON SUPERSTAR |
|
Gnulpie
Minmatar Miner Tech
|
Posted - 2011.01.26 14:18:00 -
[11]
Very good improvement! |
MissBolyai
Sniggerdly Pandemic Legion
|
Posted - 2011.01.26 14:21:00 -
[12]
Edited by: MissBolyai on 26/01/2011 14:26:48
Originally by: CCP Stillman
Originally by: Amarrchick009
Originally by: Velonad Tyldamere Free (B)Ander.
Originally by: Velonad Tyldamere Free (B)Ander.
Originally by: Lee Dalton Free Ander.
Freeing a person's IP involves a petition. API petitions don't take priority over internet spaceships, so please be patient.
lol, jk m8y
Free Andrew Wiggan
|
Lee Dalton
Sniggerdly Pandemic Legion
|
Posted - 2011.01.26 14:23:00 -
[13]
Edited by: Lee Dalton on 26/01/2011 14:23:20
Originally by: MissBolyai Edited by: MissBolyai on 26/01/2011 14:22:32
Originally by: CCP Stillman
Originally by: Amarrchick009
Originally by: Velonad Tyldamere Free (B)Ander.
Originally by: Velonad Tyldamere Free (B)Ander.
Originally by: Lee Dalton Free Ander.
Freeing a person's IP involves a petition. API petitions don't take priority over internet spaceships, so please be patient.
AT MY ***** YOU ******ED NIGGGER LOVING ***GOT FREE ANDER OR I AM GOING TO GIVE YOUR FIRSTBORN SIDS
What are SIDS?
Free karttoon!
Edit: Free Ander too! *** I AM A RUS HON SUPERSTAR |
Falcun
Gallente North Eastern Swat Pandemic Legion
|
Posted - 2011.01.26 14:26:00 -
[14]
pre emptive free MissBolyai
|
|
CCP Adida
C C P C C P Alliance
|
Posted - 2011.01.26 14:28:00 -
[15]
Removed spam posts
Adida Community Rep CCP Hf, EVE Online
|
|
|
Chribba
Otherworld Enterprises Otherworld Empire
|
Posted - 2011.01.26 14:50:00 -
[16]
\o/
Secure 3rd party service | my in-game channel 'Holy Veldspar' |
|
Lost Hamster
Hamster Holding Corp
|
Posted - 2011.01.26 14:59:00 -
[17]
Good news. -------------------------------------------------------------------------------------------- Shields are like pants, they're supposed to come off. Armor is like the condom once its gone ur ****ed |
Wollari
Phoenix Industries Black Star Alliance
|
Posted - 2011.01.26 15:08:00 -
[18]
Edited by: Wollari on 26/01/2011 15:08:26 - Good news for client-side 3rd party applications for sure (evemon, etc) no more API Sniffing in public wireless networks (example fanfest) - Bad news for 3rd party pages (who're doing a huge number of single calls 25k+ per day)
I like all API improvements :-)
|
Trebor Daehdoow
|
Posted - 2011.01.26 15:20:00 -
[19]
I appreciate (and largely agree with) the reasoning behind this, but it is probably going to kill my EViE skill training browser applet.
The reason for this is that javascript httpxmlrequest calls can only be made to the server that originated the enclosing page. So for EViE to work, I had to write a special proxy that bounces these requests off to the api server, and then returns the results (ie: Browser <-> Proxy <-> Api Server)
Now, I can certainly use https between the proxy and the Api server, but encrypting between the browser and the proxy will require buying a certificate, and I'm not sure I can justify the expense.
Confessions of a Noob Starship Politician The most expensive free trip to Iceland you'll ever win!
|
Wollari
Phoenix Industries Black Star Alliance
|
Posted - 2011.01.26 15:23:00 -
[20]
Originally by: Trebor Daehdoow Now, I can certainly use https between the proxy and the Api server, but encrypting between the browser and the proxy will require buying a certificate, and I'm not sure I can justify the expense.
Go to startssl.com. You get a "basic" ssl certificate for free. And it's beeing accepted from many browsers including iphone, etc.
|
|
Louis deGuerre
Gallente Malevolence. Imperial 0rder
|
Posted - 2011.01.26 15:28:00 -
[21]
Nice ----- Malevolence. is recruiting. Dive into the world of 0.0 !
|
Noun Verber
Gallente
|
Posted - 2011.01.26 15:32:00 -
[22]
Originally by: Trebor Daehdoow I appreciate (and largely agree with) the reasoning behind this, but it is probably going to kill my EViE skill training browser applet.
The reason for this is that javascript httpxmlrequest calls can only be made to the server that originated the enclosing page. So for EViE to work, I had to write a special proxy that bounces these requests off to the api server, and then returns the results (ie: Browser <-> Proxy <-> Api Server)
Now, I can certainly use https between the proxy and the Api server, but encrypting between the browser and the proxy will require buying a certificate, and I'm not sure I can justify the expense.
The language suggests that it is optional, but that could change in the future.
|
Stella Enallan
|
Posted - 2011.01.26 15:49:00 -
[23]
Is that the reason why EVEMon is no longer updating the data on my computer ? Does a new version have to be released ?
|
|
CCP Stillman
|
Posted - 2011.01.26 15:53:00 -
[24]
Originally by: Stella Enallan Is that the reason why EVEMon is no longer updating the data on my computer ? Does a new version have to be released ?
No, EVEMon should still work correctly.
We're aware of another issue which causes the charactersheet to fail, which would affect EVEMon. We're fixing that as a part of Incursion 1.1.2, which is being deployed tomorrow.
|
|
Trebor Daehdoow
|
Posted - 2011.01.26 16:10:00 -
[25]
Originally by: Wollari Go to startssl.com. You get a "basic" ssl certificate for free. And it's beeing accepted from many browsers including iphone, etc.
Thanks, that might be the workaround I'm looking for.
Confessions of a Noob Starship Politician The most expensive free trip to Iceland you'll ever win!
|
Tather Demaleon
|
Posted - 2011.01.26 16:45:00 -
[26]
i owe you guys three beers each.
|
Barakkus
|
Posted - 2011.01.26 16:52:00 -
[27]
Bleh, I'm going to have to figure out how to work in an SSL intercept into my POS manager program :(
If I'm not mistaken, you have to be on the same network segment to be able to sniff those packets anyways, which is highly unlikely to begin with. - - [SERVICE] Corp Standings For POS anchoring
|
Jim Luc
Caldari Rule of Five Split Infinity.
|
Posted - 2011.01.26 16:52:00 -
[28]
Yay!!
|
FullNelson Mandella
|
Posted - 2011.01.26 18:41:00 -
[29]
The encryption portion of SSL does not create a performance issue with most phones. The problem CCP will encounter is that they're probably going to acquire a Verisign cert signed by the G5 root CA, which is not in the Truststore of most phones over two years old. Many of these devices have no way of adding certificates to their CA trust stores and will be unable to connect to the API.
|
Wollari
Phoenix Industries Black Star Alliance
|
Posted - 2011.01.26 19:42:00 -
[30]
Originally by: FullNelson Mandella The encryption portion of SSL does not create a performance issue with most phones. The problem CCP will encounter is that they're probably going to acquire a Verisign cert signed by the G5 root CA, which is not in the Truststore of most phones over two years old. Many of these devices have no way of adding certificates to their CA trust stores and will be unable to connect to the API.
But maybe 3rd party apps can change your application that you can additionally check the current certificate (which is included in the app). Most of the 3rd party applications have to be update2date anyway to reflect the newest skills, expension settings etc. Turn of trust check is not the solution cause you would be vulnerable to man-in-the-middle attacks.
But SSL is of course a real new world for most people and comes with new problems, like trusted certificate list, exact hostname matching, and ssl chains, etc (I know this from work).
|
|
|
|
|
Pages: [1] 2 :: one page |
First page | Previous page | Next page | Last page |