| Pages: 1 2 3 4 5 6 7 8 9 10 11 [12] 13 14 15 .. 15 :: one page |
|
|
| Author |
Thread Statistics | Show CCP posts - 16 post(s) |
Cynthia Lynn
   |
Posted - 2007.10.20 16:20:00 -
[331]
Thanks CCP for keeping us up and running in spite of exploits and hacks.
We love you! |
Xellosu
|
Posted - 2007.10.20 16:23:00 -
[332]
Compensation is in order!! I Payed for xx Days of access minus 1hour downtime per day. Error or hack was not my fault so there is no base to charge me for time Eve was unaccessible. I think adding 1day for every one with activation at server crash time is not a nice gesture from CCP but it is their duty.
|
Angor
The JORG Corporation
Methods of Mayhem Alliance
|
Posted - 2007.10.20 16:24:00 -
[333]
Although this may have already been covered in the 12 pages leading up to this (i cant be bothered reading it all), is there an explination as to why SISI is still offline?
_______________________________
[ 2007.06.07 21:07:22 ] FrankyWave > ransom me guys I am joining XElas !!!
|
Freya Selene
Infinitus Odium
The Church.
|
Posted - 2007.10.20 16:30:00 -
[334]
Just like to speak my respect for the severe action taken against a possable intrucion.
The intensive search for anything that could have happend and anything related to the intrucion.
Personaly i would have re-routed at least the http traffic towards another destination witch would have given an anouncement. How small the message even could be, it updates your customers and gives you more time to respond.
But still my respect.
Freya.
|
RegMaster
|
Posted - 2007.10.20 16:30:00 -
[335]
LOL NOBODY AT CPP CARES LOL - SAME ISSUE AT THE SKILL QUEUE - UBER IGNORED!!!
 Originally by: Xellosu
Compensation is in order!! I Payed for xx Days of access minus 1hour downtime per day. Error or hack was not my fault so there is no base to charge me for time Eve was unaccessible. I think adding 1day for every one with activation at server crash time is not a nice gesture from CCP but it is their duty.
|
RegMaster
|
Posted - 2007.10.20 16:34:00 -
[336]
I Agree. LOL OMG. You have to realize that you have a terrible system design when your main advertisement web site and user signup site are all linked to the same game database ( single node ) and all those countless possible new users goto PAGE CANNOT BE DISPLAYED or WEBSITE NOT RESPONDING.
The CTO should have been fired 6 crashes ago....
Originally by: Freya Selene
Just like to speak my respect for the severe action taken against a possable intrucion.
The intensive search for anything that could have happend and anything related to the intrucion.
Personaly i would have re-routed at least the http traffic towards another destination witch would have given an anouncement. How small the message even could be, it updates your customers and gives you more time to respond.
But still my respect.
Freya.
|
Dirk Kuyt
|
Posted - 2007.10.20 16:36:00 -
[337]
Originally by: RegMaster
Did you notice that CCP has yet to disclose FOR HOW LONG this back door security problem was in effect. It seems to me it has been wide open a LONG time and CCP really does not honestly know exactly WHAT DATA was really taken.
BTW: IT IS US LAW that ANY known, verified or possible data hacking containing customer information MUST be reported to customer base ASAP and infulness. So , I give not extra credit for CCP owning up to it. THEY HAD TO ANYWAY.
Originally by: Sylia
Ill say well doen CCP, its nice ot see it fixed as fast as it was under such strenuous conditions.
I hope you caught the culprit. Shame the dev who was obviously targeted lost his eve acc's :(
And if CCP was a US company you would have a point...
|
Miz Cenuij
Caldari
Simply Smacktackular
|
Posted - 2007.10.20 16:39:00 -
[338]
You whining lamer loosers.
Go play any other MMORPG and see how often they have "unscheduled DT's". The average one has a damn sight more than Eve.
Don't like it?
Go play an off line game.
I believe CCP took the right action. It is impossible to foresee every type of attack that some of the malicious muppets out there can can conceive and implement.
GG CCP, ignore the idiots in this thread.
"Men are going to die..
and im going to kill them". |
RegMaster
|
Posted - 2007.10.20 16:39:00 -
[339]
They have a DBA in US so yes I have a point.
Originally by: Dirk Kuyt
Originally by: RegMaster
Did you notice that CCP has yet to disclose FOR HOW LONG this back door security problem was in effect. It seems to me it has been wide open a LONG time and CCP really does not honestly know exactly WHAT DATA was really taken.
BTW: IT IS US LAW that ANY known, verified or possible data hacking containing customer information MUST be reported to customer base ASAP and infulness. So , I give not extra credit for CCP owning up to it. THEY HAD TO ANYWAY.
Originally by: Sylia
Ill say well doen CCP, its nice ot see it fixed as fast as it was under such strenuous conditions.
I hope you caught the culprit. Shame the dev who was obviously targeted lost his eve acc's :(
And if CCP was a US company you would have a point...
|
RegMaster
|
Posted - 2007.10.20 16:42:00 -
[340]
LOL please...They got hacked by another STANDARD Microsoft SQL Server BS hack and loose fingered handling of ex/employee codes.
Originally by: Miz Cenuij
It is impossible to foresee every type of attack that some of the malicious muppets out there can can conceive and implement.
GG CCP, ignore the idiots in this thread.
|
|
|
Jonat Eken
Gallente
|
Posted - 2007.10.20 16:43:00 -
[341]
Edited by: Jonat Eken on 20/10/2007 16:43:53
Originally by: RegMaster
Did you notice that CCP has yet to disclose FOR HOW LONG this back door security problem was in effect. It seems to me it has been wide open a LONG time and CCP really does not honestly know exactly WHAT DATA was really taken.
BTW: IT IS US LAW that ANY known, verified or possible data hacking containing customer information MUST be reported to customer base ASAP and infulness. So , I give not extra credit for CCP owning up to it. THEY HAD TO ANYWAY.
Key phrase being "US law." Have you ever paid attention to where EVE is from?  I know americans tend to think they run the world, but...  Branch offices don't count.
|
RegMaster
|
Posted - 2007.10.20 16:46:00 -
[342]
Yes they are DBA in US and its not just US LAW but the VISA/MASTER CARD and AMEX merchant requirement.
Originally by: Jonat Eken
Edited by: Jonat Eken on 20/10/2007 16:43:53
Originally by: RegMaster
Did you notice that CCP has yet to disclose FOR HOW LONG this back door security problem was in effect. It seems to me it has been wide open a LONG time and CCP really does not honestly know exactly WHAT DATA was really taken.
BTW: IT IS US LAW that ANY known, verified or possible data hacking containing customer information MUST be reported to customer base ASAP and infulness. So , I give not extra credit for CCP owning up to it. THEY HAD TO ANYWAY.
Key phrase being "US law." Have you ever paid attention to where EVE is from? I know americans tend to think they run the world, but... Branch offices don't count.
|
Omega87
Caldari
Griefer-B-Gone
|
Posted - 2007.10.20 16:50:00 -
[343]
Originally by: Miz Cenuij
You whining lamer loosers.
Go play any other MMORPG and see how often they have "unscheduled DT's". The average one has a damn sight more than Eve.
Don't like it?
Go play an off line game.
I believe CCP took the right action. It is impossible to foresee every type of attack that some of the malicious muppets out there can can conceive and implement.
GG CCP, ignore the idiots in this thread.
QFT
------
"Nothing ventured, nothing ganked." - Me |
RegMaster
|
Posted - 2007.10.20 16:55:00 -
[344]
Belmarduk - CCP is too weak to realize that they need skill queue - if for nothing else to cover players when they have the next server crash. A LOT of low to MED level players have dozens of short skills that require a lot of hand holding. Anyway CCP already been ignoring the skill queue request since the first year it was up. Granted mostly the new users will be hurt by this because by the time you 6 months old - your skills are like 5days+ to train.
So keep hurting the new users CCP and slapping the vets upside the head with the stinky salmon.
Originally by: Belmarduk
Things like this can allways happen but for christ sake give us a SKILL QUEUEplease !!!!! Then people wouldnt lose SP because of things like this..
|
Taloth Saldono
|
Posted - 2007.10.20 16:56:00 -
[345]
Originally by: RegMaster
I Agree. LOL OMG. You have to realize that you have a terrible system design when your main advertisement web site and user signup site are all linked to the same game database ( single node ) and all those countless possible new users goto PAGE CANNOT BE DISPLAYED or WEBSITE NOT RESPONDING.
The CTO should have been fired 6 crashes ago....
Originally by: Freya Selene
Just like to speak my respect for the severe action taken against a possable intrucion.
The intensive search for anything that could have happend and anything related to the intrucion.
Personaly i would have re-routed at least the http traffic towards another destination witch would have given an anouncement. How small the message even could be, it updates your customers and gives you more time to respond.
But still my respect.
Freya.
Its irrelevant whether they are or are not linked to the same database cluster. (not server, I very much doubt one server could handle the full db load)
The breach was, as indicated, an infrastructural breach and the entire network was shut down at the taskforce recommendation. Meaning, all proxies, web servers, game servers and db servers are 'shutdown' to ensure that no external entity could effect more damage or that one compromised system in a partially disabled network could continue to cause harm.
There is no excuse for the loss of training for those who care, CCP should be able to guarantee such training easily with features as suggested many times over. And I hope the many \signed in this thread will finally get it out of the Drawingboard and into the next featured expansion.
As for the lack of information, the EVE server notification area (login screen) is hosted by the same webserver, the client could easily be configured to look on another secure URL if the primary connection fails (Meaning that CCP doesn't have to take any action to ensure the user is redirected to a trustworthy source). But as CCP already mentioned, they will be implementing something to the same end.
Taloth
PS: Reading the news item I understand the culprit is already identified (and hopefully detained by now).
|
Nende
Yakuza Corp
THE R0NIN
|
Posted - 2007.10.20 16:56:00 -
[346]
Edited by: Nende on 20/10/2007 16:56:41
Dear CCP,
The only compensation I politely request is to humor the techies amongst us and detail the intrusion method. (Once you have it plugged up tighter than the north korean border ofcourse.)
|
RegMaster
|
Posted - 2007.10.20 17:02:00 -
[347]
Dear CCP,
Please put the CTO ( or whomever that is ) in an IBIS and allow us to repeatedly pod him for 10 hours while in local chat, he/she has to keep typing "THANK YOU. MAY I HAVE ANOTHER?"
hrmmm that would satisfy me.
Originally by: Nende
Edited by: Nende on 20/10/2007 16:56:41
Dear CCP,
The only compensation I politely request is to humor the techies amongst us and detail the intrusion method. (Once you have it plugged up tighter than the north korean border ofcourse.)
|
Jonat Eken
Gallente
|
Posted - 2007.10.20 17:06:00 -
[348]
Originally by: RegMaster
Yes they are DBA in US and its not just US LAW but the VISA/MASTER CARD and AMEX merchant requirement.
I don't know about Amex/MC rules, but I am quite familiar with VISA rules. And the rules for the US state that if customer billing information is compromised (note CUSTOMER BILLING, not computer systems et al) VISA will be the one to contact customers, NOT the merchant. In fact, the merchant is only supposed to notify their internal sec team, Visa sec, and suggested to contact the Secret Service as well. 
|
fushi yasha
|
Posted - 2007.10.20 17:07:00 -
[349]
im sure this has been said but its worth a try......
can i have his stuff 
|
SoldierOfJustice
Infortunatus Eventus
HUZZAH FEDERATION
|
Posted - 2007.10.20 17:17:00 -
[350]
Originally by: CCP Wrangler
Originally by: EdRush
Since yesterday i have been unable to log in my second account ,I have sent a petition,but no answer yet ..User "characters name " has been disabled last login 2007:10:19 22.05 number visits :1199 reason none ..This happens both when i try to log in to the game and my account details 
Try to use password retrieval. 
That might be a hint that some roleback happened after all. But never mind it, lets get to whats important.
Did that hacker get access to important information about your customers (RL names, adresses, credit card information, logins..) or did he not?
Should we change our passwords or no need for that?
I mean come on, big issue and all we know now is that we suffered some unexpected DT. Dont you think we need more info so we prevent that guy from stealing our accounts?
|
|
|
RegMaster
|
Posted - 2007.10.20 17:19:00 -
[351]
Those CCP icelandic viking pirates!
Originally by: SoldierOfJustice
I mean come on, big issue and all we know now is that we suffered some unexpected DT. Dont you think we need more info so we prevent that guy from stealing our accounts?
|
|
CCP Wrangler
|
Posted - 2007.10.20 17:24:00 -
[352]
Originally by: SoldierOfJustice
That might be a hint that some roleback happened after all. But never mind it, lets get to whats important.
Did that hacker get access to important information about your customers (RL names, adresses, credit card information, logins..) or did he not?
Should we change our passwords or no need for that?
I mean come on, big issue and all we know now is that we suffered some unexpected DT. Dont you think we need more info so we prevent that guy from stealing our accounts?
If it would have been necessary we would have reset the passwords for you and made you use pw retrieval to get a new password.
But in general you should change your password regularly, every 3 months or so, use long passwords, at least one digit and one capital letter, never use real words etc.
Wrangler
Community Manager
EVE Online, CCP Games
Email/Netfang
"The trouble with having an open mind, of course, is that people will insist on coming along and trying to put things in it." |
|
Dimagus
|
Posted - 2007.10.20 17:26:00 -
[353]
Taking down the server was the correct choice. However, they do need a skill queue, preferably for just the next skill. Training requires being logged in at an exact moment of time and that would be acceptable if and only if access and service can be guaranteed at all times needed. Even making allowances for the daily one-hour DT, it can't be guaranteed.
Make a next skill queue and solve that problem.
|
SoldierOfJustice
Infortunatus Eventus
HUZZAH FEDERATION
|
Posted - 2007.10.20 17:37:00 -
[354]
Originally by: CCP Wrangler
Originally by: SoldierOfJustice
That might be a hint that some roleback happened after all. But never mind it, lets get to whats important.
Did that hacker get access to important information about your customers (RL names, adresses, credit card information, logins..) or did he not?
Should we change our passwords or no need for that?
I mean come on, big issue and all we know now is that we suffered some unexpected DT. Dont you think we need more info so we prevent that guy from stealing our accounts?
If it would have been necessary we would have reset the passwords for you and made you use pw retrieval to get a new password.
But in general you should change your password regularly, every 3 months or so, use long passwords, at least one digit and one capital letter, never use real words etc.
I really hope you are right about that he didnt gain access to important information. But I still recomend that ppl change their passwords even if they did it the day before the incident.
|
Carita Cartwright
Caldari
Perkone
|
Posted - 2007.10.20 17:46:00 -
[355]
Its down again guys
|
Wardo21
The Arcanum
|
Posted - 2007.10.20 17:58:00 -
[356]
Skipped from the top of page 5 to posting, if this has been suggested already, kudos for someone else beating me to it...
How about setting the system to a message for the client. All I got was "unavailable" I think, or status "unknown".
I took off a day from work to play, and ended up playing something else. I would have preferred EVE, but I can handle some unexpected downtime. Having managed servers and other IT resources it isn't surprising that it took a while to fix. Better that it's fixed right than returned to service still broken.
That being said, CCP needs some form of communications with the players when the servers are down. The client seems the obvious place to me. Why not point the text box where the status messages are to a static web page, separate and apart from the login criteria or anything else game related. Publish the link for each server and then we can check things from outside the game from the same URL.
Wardo21
|
Akira2501
|
Posted - 2007.10.20 18:00:00 -
[357]
Setting up a basic, auxiliary web server would elevate a lot of the gossip and ridiculous predictions of doom that go on every time there is an outage or a downtime.
Perhaps make it a separate sub-domain like: status.eve-online.com
No forums or anything, just a basic web site for official CCP messages where status can be updated.
(Skill in que would be most welcome too)
|
Ash Donai
|
Posted - 2007.10.20 18:12:00 -
[358]
Originally by: Dimagus
However, they do need a skill queue, preferably for just the next skill. Training requires being logged in at an exact moment of time and that would be acceptable if and only if access and service can be guaranteed at all times needed. Even making allowances for the daily one-hour DT, it can't be guaranteed.
Make a next skill queue and solve that problem.
Where you are severely mistaken is that you believe you are by some miracle entitled to continious training, when in fact you are not entitled to anything beyond playing the game when it is available to you.
Do you believe you $15 buys you some sort of rights beyond the opportunity the play the game when the servers are up? Think again.
If the current situation is not acceptable to you, as your post implied, then quit.
|
DeSaros Umekawa
|
Posted - 2007.10.20 18:15:00 -
[359]
Great work on this. Downtime is a better outcome than our personal information being released.
|
Jason Crab
|
Posted - 2007.10.20 18:18:00 -
[360]
Sweeeeet. Nice Job CCP
|
|
|
|
|
| |
|
| Pages: 1 2 3 4 5 6 7 8 9 10 11 [12] 13 14 15 .. 15 :: one page |
| First page | Previous page | Next page | Last page |