Originally by: Grimpak

---

Originally by: Akita T

---

Originally by: Grimpak

---

wait, are you telling me that this the exact same ****up as on boot.ini but in a different place?

---

It would appear so, at least as far as signatures are concerned...

---

wtf, didn't they fired that guy?

---

Originally by: Grimpak

---

Originally by: Akita T

---

Originally by: Grimpak

---

wait, are you telling me that this the exact same ****up as on boot.ini but in a different place?

---

It would appear so, at least as far as signatures are concerned...

---

wtf, didn't they fired that guy?

---

Originally by: Frecator Dementa

---

Originally by: Grimpak

---

Originally by: Akita T

---

Originally by: Grimpak

---

wait, are you telling me that this the exact same ****up as on boot.ini but in a different place?

---

It would appear so, at least as far as signatures are concerned...

---

wtf, didn't they fired that guy?

---

I wouldn't call this the same ****up at all. The signature exploit sounds like they forgot to HTML encode, the boot.ini was a file name conflict.

---

Quote:

---

The more I know about humans, the more I love animals.

---

Originally by: Grimpak

---

granted not really the same but the type of mistake is basically the same.

---

Originally by: Akita T

---

Originally by: Grimpak

---

granted not really the same but the type of mistake is basically the same.

---

The boot.ini thing could have been an honest mistake, this one however, not so much (like Tippia pointed out, they do obsessively sanitize it in some other place).
So, meh.

---

Quote:

---

The more I know about humans, the more I love animals.

---

Originally by: El'Niaga

---

Okay what we need to do is fire the individuals responsible for this fiasco. We don't need some lame excuse that the boss is gone on vacation, call him back if he is.

I seriously hope a team didn't spend 70k hours on modifying a YAF board to fit EVE's needs. If they did, then get rid of these leeches.

---

Originally by: El'Niaga

---

Also its now past 11 am your time, where is our promised update?

---

Quote:

---

IÆm not claiming. IÆm stating outright that customer data was never at risk. WeÆve also said there will be a blog which will detail what occurred and what was wrong. -CCP Sreegs

---

Originally by: MisterAl tt1

---

After having read some external info regarding your "brand new" forums I would say that the whole team in charge of this f... up is to be fired!

To allow code insertion into signatures! What kind of "specialists" work there?! How could've you bring OUR computers under such a risk?!

Well, I'm sure CCP will state everything is OK and there was no risk. Even with my little knowledge I can say that they LIE.

---

Originally by: Shade Millith

---

Quote:

---

IÆm not claiming. IÆm stating outright that customer data was never at risk. WeÆve also said there will be a blog which will detail what occurred and what was wrong. -CCP Sreegs

---

And according to http://www.machine9.net/blog/?p=592 , and the bloke who made it public on SHC (Because you ignored his petitions, then banned him), you're lying out your arse.

Screw you.

---

Quote:

---

The more I know about humans, the more I love animals.

---

Originally by: MisterAl tt1

---

To allow code insertion into signatures! What kind of "specialists" work there?! How could've you bring OUR computers under such a risk?!

Well, I'm sure CCP will state everything is OK and there was no risk. Even with my little knowledge I can say that they LIE.

---

Originally by: Miilla

---

I say we cancel your account after we fire them, deal?
Fair exchange?

---

Originally by: dexington

---

hahah... you better format you computer, to be sure there is no malware installed. Remember to turn off your computer for 45 min after the format, just to be sure nothing survives in memory!

anyways, when do we see the dev blog?, can someone confirm the rumors that the head of security called in sick today?

---

Originally by: Miilla

---

How about putting some real content into the forums instead of tears?

---

Originally by: Frecator Dementa

---

I wouldn't call this the same ****up at all. The signature exploit sounds like they forgot to HTML encode, the boot.ini was a file name conflict.

---

Originally by: Miilla

---

Do we still need this thread? All it encourages is bashing and whining. We get the point :)

How about putting some real content into the forums instead of tears?

---

Originally by: MisterAl tt1

---

Meaning "let it slide and let CCP don't bother about doing some non-professional work again" ? No. I want CCP to see that users ARE interested in seeing CCP really do something like they should.

---

Originally by: dexington

---

Originally by: MisterAl tt1

---

Meaning "let it slide and let CCP don't bother about doing some non-professional work again" ? No. I want CCP to see that users ARE interested in seeing CCP really do something like they should.

---

You just want to ***** and whine, did someone put chilly on your tampax or what?

---

Originally by: MisterAl tt1

---

Trolls damage controling CCP ? How nice.

---

Originally by: Zey Nadar

---

Pointing out that there are more glaring holes in the new forum than just the signature exploit.

And the best part is that these holes were reported in the test phase.

---

Originally by: Gnulpie

---

Edited by: Gnulpie on 11/04/2011 14:03:23

Originally by: Zey Nadar

---

Pointing out that there are more glaring holes in the new forum than just the signature exploit.

And the best part is that these holes were reported in the test phase.

---

Do you have any proof that those issues were reported? Any mails/correspondence? Forum posts? Bug ID's?

And who reported them? And in which detail were those problems reported?

---

Originally by: Miilla

---

That's not the problem, the problem is, he went and exploited it.

---

Originally by: Niraia

---

Originally by: Miilla

---

That's not the problem, the problem is, he went and exploited it.

---

I don't think that's a problem for anyone but himself, assuming he did no damage..

---

Originally by: Miilla

---

Edited by: Miilla on 11/04/2011 14:15:09

Originally by: Gnulpie

---

Edited by: Gnulpie on 11/04/2011 14:03:23

Originally by: Zey Nadar

---

Pointing out that there are more glaring holes in the new forum than just the signature exploit.

And the best part is that these holes were reported in the test phase.

---

Do you have any proof that those issues were reported? Any mails/correspondence? Forum posts? Bug ID's?

And who reported them? And in which detail were those problems reported?

---

That's not the problem, the problem is, he went and exploited it. He should have just made the problem public and let it at that. But no, he had to be an a.sshat and exploit it.

There is a little thing called TRIAGE on bugs. If only you saw the amount of issues triaged out to wont fix or postponed at Microsoft, why? They are below the fix bar at that point in time, and probably lack of resources and also not their primary focus or perhaps just a badly explained bug repro and impact.

There is no reason to go exploit the bug to deny us all the service we pay for. That is a no no. Shout all he wants publically, thats what whistleblowers do. End of story.

Given the attitude this guy has, he probably wrote it in rage speak in the email and bug report with l33t too. I can see why it would be downgraded or ignored.

He crossed the line.

---

Originally by: Miilla

---

He did do damage, he started posting as somebody else, modifying other customers posts and end result we where denied access to the service for a few days.

---

Originally by: Miilla

---

That's not the problem, the problem is, he went and exploited it. He should have just made the problem public and let it at that. But no, he had to be an a.sshat and exploit it.

There is a little thing called TRIAGE on bugs. If only you saw the amount of issues triaged out to wont fix or postponed at Microsoft, why? They are below the fix bar at that point in time, and probably lack of resources and also not their primary focus or perhaps just a badly explained bug repro and impact.

There is no reason to go exploit the bug to deny us all the service we pay for. That is a no no. Shout all he wants publically, thats what whistleblowers do. End of story.

Given the attitude this guy has, he probably wrote it in rage speak in the email and bug report with l33t too. I can see why it would be downgraded or ignored.

He crossed the line.

---

Originally by: LtCol Laurentius

---

Originally by: Miilla

---

That's not the problem, the problem is, he went and exploited it. He should have just made the problem public and let it at that. But no, he had to be an a.sshat and exploit it.

There is a little thing called TRIAGE on bugs. If only you saw the amount of issues triaged out to wont fix or postponed at Microsoft, why? They are below the fix bar at that point in time, and probably lack of resources and also not their primary focus or perhaps just a badly explained bug repro and impact.

There is no reason to go exploit the bug to deny us all the service we pay for. That is a no no. Shout all he wants publically, thats what whistleblowers do. End of story.

Given the attitude this guy has, he probably wrote it in rage speak in the email and bug report with l33t too. I can see why it would be downgraded or ignored.

He crossed the line.

---

You use the word exploits as if it were true. Previosly you linked the definition of "whistleblower" in you ongoing campaign to whiteknight CCP. Let me thus prove a definition of "exploit": "An exploit, in video games, is the use of a bug or design flaw by a player to their advantage in a manner not intended by the game's designers".

Its very clear that you dont like him "feeding his ego", but I doubt that it can be classified as en "exploit".

---