Pages: [1] 2 3 4 :: one page |
|
Author |
Thread Statistics | Show CCP posts - 2 post(s) |

Akita T
Caldari Navy Volunteer Task Force
|
Posted - 2009.07.23 18:50:00 -
[1]
Edited by: Akita T on 23/07/2009 18:54:56
Let's summarize how things look from where I'm standing... ...if I'm wrong about anything so far, feel free to point it out.
You added captcha to the forum login. Sounds good enough at first sight, right ? WRONG. You added a really archaic-looking captcha, one which is quite easily machine-breakable (easily, as in "it has been done", NOT as in "any regular Joe could do it"), while also being easily human-mistypeable (O vs 0, for instance, I got the captcha wrong myself too, it's a 50-50 chance of getting it right). It's not like one of the better captchas out there is not just hard to beat, but also free to use and also helps digitize books in the process. Also, who says we're dealing with bots here in the first place ? Considering the fact the posters were actually paid accounts (otherwise they couldn't have posted in the first place), chances are pretty high we're actually dealing with a form of sweatshop-operators instead of bots. Oh... and by the way there were such posts already SINCE the captchas were in place so... yeah.
Excessive ? Check. Ineffective ? Check.
You hastily added a lot of unnecessary expressions to the word-filter, butchering a whole legitimate words in the process. The funny thing is, the spam-exploit "attacks" didn't even USE those specific combination letters anywhere in their links (or at least, none in those I saw). What's next, disabling linking and word-filtering everything else ? Didn't the in-game comm channels already teach you that it's nearly pointless to try to do that ? "They" will find ways around that soon enough. Oh and by the way, was it so hard to filter ". e x e" instead of "l e x e" or "e x e" or any other such thing ? How come you didn't filter "jpg" instead ? And what about tinyurl ?
Excessive ? Check. Ineffective ? Check.
Did I miss anything ?
|

Elite Contract
|
Posted - 2009.07.23 18:54:00 -
[2]
Take your fail back to MD |

Akita T
Caldari Navy Volunteer Task Force
|
Posted - 2009.07.23 18:54:00 -
[3]
No.
|

Arec Bardwin
|
Posted - 2009.07.23 18:54:00 -
[4]
You tell those stupid devs!! Go Akita!!  |

Nikolay Tesla
Minmatar Brutor tribe
|
Posted - 2009.07.23 18:54:00 -
[5]
Did CCP kill your business?  |

Akita T
Caldari Navy Volunteer Task Force
|
Posted - 2009.07.23 18:55:00 -
[6]
Edited by: Akita T on 23/07/2009 18:56:11
Originally by: Nikolay Tesla Did CCP kill your business? 
You killed my father, prepare to die (in-game).
|

Fink Angel
Caldari The Merry Men
|
Posted - 2009.07.23 18:56:00 -
[7]
I guess they are having to rapidly firefight, so are putting up "standard" breakwaters to try to cope.
In this case it's unlikely to have been a bot, so the poster is just as likely to type the captcha correcly as you or I.
Hopefully CCP will realise this and pull the capcha sooner rather than later, as it's a real PITA.
However, "damned if you do, damned if you don't" seems to apply in this instance.
|

Estel Arador
Minmatar Estel Arador Corp Services
|
Posted - 2009.07.23 18:56:00 -
[8]
Originally by: Nikolay Tesla Did CCP kill your business? 
Now that you mention it, Akita T does look a lot like one of the girls in the picture they've been spamming... |

Kewso
|
Posted - 2009.07.23 18:58:00 -
[9]
If you don't like captcha so much then install Greasemonkey firefox plugin, then search greasemonkey captcha there is a greasemonkey plugin that will auto input captcha's for you. it reads the image so saves on clicks and extra typing.
|

Amateratsu
Caldari The Pegasus Project
|
Posted - 2009.07.23 18:58:00 -
[10]
Glad someone else spotted the O vs 0 problem....
Took me 6 attempts to log in |
|

Akita T
Caldari Navy Volunteer Task Force
|
Posted - 2009.07.23 18:58:00 -
[11]
I wouldn't have minded the captcha, if they used a half-decent one. I wouldn't have minded a more draconic word and/or link filter, if it would have been at least marginally effective. But so far everything looks both excessive and ineffective, which is a PITA combination made in hell.
|

Armoured C
Gallente The Scope
|
Posted - 2009.07.23 19:00:00 -
[12]
as you said if it is sweatshop operated then the code thing wont work. we just need to be able to block them out.
maybe involving the police since they are doing illegal stuff on the forums.
Unfornatually none of us know how to deal with this since we dont own something off this size. It all about speculation and guess work on what to do. it obviously not just up to IP blocking since we wouldnt be seeing them again other wise.
|

Gnulpie
Minmatar Miner Tech
|
Posted - 2009.07.23 19:07:00 -
[13]
Oh man, that is really HORRIBLE.
Why, oh why??
Grr, again a post I have to agree with Akita T. Stop that! This is not right! |

rValdez5987
Amarr Imperial Guard. Soldiers of Solitude
|
Posted - 2009.07.23 19:11:00 -
[14]
Originally by: Akita T Edited by: Akita T on 23/07/2009 18:54:56
Let's summarize how things look from where I'm standing... ...if I'm wrong about anything so far, feel free to point it out.
You added captcha to the forum login. Sounds good enough at first sight, right ? WRONG. You added a really archaic-looking captcha, one which is quite easily machine-breakable (easily, as in "it has been done", NOT as in "any regular Joe could do it"), while also being easily human-mistypeable (O vs 0, for instance, I got the captcha wrong myself too, it's a 50-50 chance of getting it right). It's not like one of the better captchas out there is not just hard to beat, but also free to use and also helps digitize books in the process. Also, who says we're dealing with bots here in the first place ? Considering the fact the posters were actually paid accounts (otherwise they couldn't have posted in the first place), chances are pretty high we're actually dealing with a form of sweatshop-operators instead of bots. Oh... and by the way there were such posts already SINCE the captchas were in place so... yeah.
Excessive ? Check. Ineffective ? Check.
You hastily added a lot of unnecessary expressions to the word-filter, butchering a whole legitimate words in the process. The funny thing is, the spam-exploit "attacks" didn't even USE those specific combination letters anywhere in their links (or at least, none in those I saw). What's next, disabling linking and word-filtering everything else ? Didn't the in-game comm channels already teach you that it's nearly pointless to try to do that ? "They" will find ways around that soon enough. Oh and by the way, was it so hard to filter ". e x e" instead of "l e x e" or "e x e" or any other such thing ? How come you didn't filter "jpg" instead ? And what about tinyurl ?
Excessive ? Check. Ineffective ? Check.
Did I miss anything ?
I love you Akita. You're like my other half.
I was ripping apart OOPE with my troll, and you are ripping apart General with this.
Furthermore I agree with you. |

Abrazzar
|
Posted - 2009.07.23 19:12:00 -
[15]
Say, when was the last spam wave? Must have been a couple with the CAPTCHA being so ineffective. |

Armoured C
Gallente The Scope
|
Posted - 2009.07.23 19:15:00 -
[16]
being negative is counter productive.
The company is responsible to protect the forums and the rate at which these guys are doing this I dont think that CCP are sitting on there thumbs. |

xBLACKNOVAx
Black Nova Investments
|
Posted - 2009.07.23 19:22:00 -
[17]
Originally by: Abrazzar Say, when was the last spam wave?
Around about... now  |

Pater Peccavi
Minmatar Cadre Assault Force
|
Posted - 2009.07.23 19:24:00 -
[18]
When I logged into EVE today, I found an EVEmail saying I was a poor bastard and it wasn't worth the effort to get my account details
Anywho, I agree that 0 vs O is annoying, and the system is largely ineffective. |

Abrazzar
|
Posted - 2009.07.23 19:25:00 -
[19]
Originally by: xBLACKNOVAx
Originally by: Abrazzar Say, when was the last spam wave?
Around about... now 
Yeah, I retract my statement. |

Sanira Luini
|
Posted - 2009.07.23 19:30:00 -
[20]
Edited by: Sanira Luini on 23/07/2009 19:30:16 O.o |
|

Cassiopeia Draco
|
Posted - 2009.07.23 19:31:00 -
[21]
they just started running the 'naked satalite images' spam posts.
the Isk sellers must be getting desperate since thier macros got perma-banned.
Took me 3 attempts to login with the CAPCHA, again 0 vs o and the occasional 1 vs I. |

Manu Hermanus
FaDoyToy
|
Posted - 2009.07.23 19:35:00 -
[22]
if they get through the whole make account, pay for account, a captcha to log into the forums really wont stop it.... |

Weight What
|
Posted - 2009.07.23 19:39:00 -
[23]
Whiney? Check |

Akita T
Caldari Navy Volunteer Task Force
|
Posted - 2009.07.23 19:39:00 -
[24]
Originally by: Manu Hermanus if they get through the whole make account, pay for account, a captcha to log into the forums really wont stop it....
Let's not forget "log into the game to create a character", because without a character created first, you can't post.
|

Armoured C
Gallente The Scope
|
Posted - 2009.07.23 19:41:00 -
[25]
Originally by: Akita T
Originally by: Manu Hermanus if they get through the whole make account, pay for account, a captcha to log into the forums really wont stop it....
Let's not forget "log into the game to create a character", because without a character created first, you can't post.
so if that is the case what you suggested is completely useless and a waste of time anyway ?
so not only are you moaning that they tried something the way you would of done it you would of still came to the same conclusion anyway. i see that no better. |

Akita T
Caldari Navy Volunteer Task Force
|
Posted - 2009.07.23 19:41:00 -
[26]
Originally by: Weight What Whiney? Check
Define "whiney" in a way that makes me look bad and you good when applied to the current situation that can't be applied to everything (bonus points for making it coherent, extra bonus for making it logical).
|

Jaina Proudmoar
|
Posted - 2009.07.23 19:41:00 -
[27]
Audrey Bitoni would agree. |

voogru
Massive Damage United Corporations Against Macros
|
Posted - 2009.07.23 19:47:00 -
[28]
I approve. |

Akita T
Caldari Navy Volunteer Task Force
|
Posted - 2009.07.23 19:49:00 -
[29]
Edited by: Akita T on 23/07/2009 19:53:16
Originally by: Armoured C
Originally by: Akita T
Originally by: Manu Hermanus if they get through the whole make account, pay for account, a captcha to log into the forums really wont stop it....
Let's not forget "log into the game to create a character", because without a character created first, you can't post.
so if that is the case what you suggested is completely useless and a waste of time anyway ? so not only are you moaning that they tried something the way you would of done it you would of still came to the same conclusion anyway. i see that no better.
First off, they could hunt for the machines used in the creation of said characters and flag all other accounts with the same details. And no, before you ask, I don't mean IP, I mean the other data CCP silently collects at login time. Stuff like windows product hash ID and other such things.
Second, they could have simply word-filtered the APPROPRIATE words, in this case, ".jpg" and the SITE NAME used in that audrey whatchamacallit thingy (you know, the ACTUAL stuff they're supposed to try to keep us away from) plus ". e x e" (that's a dot in there as the first of 4 characters) if they want to do "prophylactic filetering" instead of "e x e" and "l e x e" (which both make no sense since they're part of many words in common use across this board, and what's the deal with the second one anwyay?). They might have also pre-emptively blocked tinyurl, which they apparently didn't.
Third, I would have never used the fail-captcha they used.
The point is, they introduced some measures which proved to be ineffective already. At this time, they can either roll them all back, or at least strive to make them NOT ANNOYING for regular customers if they insist on keeping them anyway. Not that they couldn't have done it much better from the very start to begin with.
This being CCP however, I fully expect them to remain in place, exactly as excessive, annoying and ineffective as they are... at least until the public outcries against them becomes loud enough and time proves their ineffectiveness.
And so on and so forth, as I already explained in the OP... right now, I was merely repeating and clarifying, with little extra info in this post that wasn't already in the OP.
|

Mutnin
Mutineers
|
Posted - 2009.07.23 19:51:00 -
[30]
The simplest solution would be to just disable linking of URL's until they can get this guy blocked.
Sure it would be a "slight" inconvenience for the user base but really it's not that hard to copy a text URL to your browser. Disable URL's and the moron will figure out it's not worth paying for a new sub each day. |
|
|
|
|
Pages: [1] 2 3 4 :: one page |
First page | Previous page | Next page | Last page |