Pages: [1] :: one page |
|
Author |
Thread Statistics | Show CCP posts - 3 post(s) |
Letrange
Chaosstorm Corporation
37
|
Posted - 2012.02.27 01:23:00 -
[1] - Quote
Subject says it all, What's up with that?
(was kinda going to pay for one of my alt accounts - but that kinda stalls it...) |
J Random
Teshnology Inc. Stealth Wear Inc.
9
|
Posted - 2012.02.27 01:30:00 -
[2] - Quote
No it's not you Letrange and no you aren't being MITM (the SSL Observatory can confirm this as can Convergence)
This why Eve sucks at technology (hence database corruption issues, etc). Multi-million dollar company and you can't remember to f'ing update your cert .. that takes what, ten minutes once every couple years? Also it doesn't slip through the cracks as your CA will send you snail mail and call you a million times before to nag you. This is what happens when you let coders and sales run your company.
Cert Expire: GÇÄSunday, GÇÄFebruary GÇÄ26, GÇÄ2012 1:59:59 PM [local to me] |
Johan Civire
Dirty Curse inc.
4
|
Posted - 2012.02.27 01:33:00 -
[3] - Quote
J Random wrote:No it's not you Letrange and no you aren't being MITM (the SSL Observatory can confirm this as can Convergence)
This why Eve sucks at technology (hence database corruption issues, etc). Multi-million dollar company and you can't remember to f'ing update your cert .. that takes what, ten minutes once every couple years? Also it doesn't slip through the cracks as your CA will send you and call you a million times before to tag you. This is what happens when you let coders and sales run your company.
Cert Expire: GÇÄSunday, GÇÄFebruary GÇÄ26, GÇÄ2012 1:59:59 PM [local to me]
to bad but indeed |
Letrange
Chaosstorm Corporation
37
|
Posted - 2012.02.27 03:26:00 -
[4] - Quote
Humm, someone needs to bat phone CCP Streggs (sp) as it would seem to me that this falls under his bailiwick. Let's see if that [email protected] works... |
rodyas
Tie Fighters Inc
453
|
Posted - 2012.02.27 04:48:00 -
[5] - Quote
That is funny. Anyone have spare security certs? Make a quick sale to CCP with one. disorientating |
Stonecrusher Mortlock
University of Caille Gallente Federation
22
|
Posted - 2012.02.27 05:36:00 -
[6] - Quote
i want to see a video dev blog about this just BECAUSE i think it would be funny. |
Flocka Seagulls
Aliastra Gallente Federation
0
|
Posted - 2012.02.27 05:37:00 -
[7] - Quote
Of all the things they could forget to do. Now I have to buy a time card from someone that DID re-up their certs just to keep my alt going...
NEVERMIND, Shattered Crystal is out of stock! What a way to end my sunday night... |
Ranger 1
Ranger Corp
1061
|
Posted - 2012.02.27 05:40:00 -
[8] - Quote
You mean people actually pay attention to that?
Hell, I've been to Microsoft pages that had expired certs. When I check troll in the dictionary, it has a photo shopped picture of you standing somewhere in the vicinity of a point.
Also, I can kill you with my brain. |
J Random
Teshnology Inc. Stealth Wear Inc.
9
|
Posted - 2012.02.27 06:25:00 -
[9] - Quote
Letrange wrote:Humm, someone needs to bat phone CCP Streggs (sp) as it would seem to me that this falls under his bailiwick. Let's see if that [email protected] works...
Except it's not. PKI maintenance falls squarely under the O&M tech staff. Staff IT security is just inside consulting and monitoring for the most part.
Ranger1: Who wouldn't pay attention to it on a site where you enter your trusted credentials. MITM happen all the time and are very prolific.
What really killing me here is here we are like eight hours and still not fixed .. this is a ten minute fix for christ sake. |
J Random
Teshnology Inc. Stealth Wear Inc.
9
|
Posted - 2012.02.27 17:50:00 -
[10] - Quote
A wildcar certificate is not the answer and breaks the promise of PKI even if your CA will issue you one. Once again, can a mutli-million dollar company that makes heavy use of the web take a whole ten minutes and understand at least the basics of PKI and SSL.
PS: Yes I know RFC2818 allows for wilidcard certs but the challenge is the clients (i.e. browsers) don't handle them correctly as they are suppose to flag a warning regardless of whether the cert is legit or not. |
|
|
CCP Explorer
95
|
Posted - 2012.02.27 19:56:00 -
[11] - Quote
We are aware of this issue and are working on resolving it. Erlendur S. Thorsteinsson Software Director EVE Online, CCP Games |
|
Bumblefck
Kerensky Initiatives
2902
|
Posted - 2012.02.27 19:59:00 -
[12] - Quote
In the meantime, please continue handing over your credit card / account details to an unsecure site ^^
---- CONCORD arrested two n00bs yesterday, one was drinking battery acid, the other was eating fireworks. They charged one and let the other one off. |
Blawrf McTaggart
GoonWaffe Goonswarm Federation
578
|
Posted - 2012.02.27 20:01:00 -
[13] - Quote
sreeeeeeeeeeeeeegs :argh: |
|
CCP Explorer
95
|
Posted - 2012.02.27 20:03:00 -
[14] - Quote
Bumblefck wrote:In the meantime, please continue handing over your credit card / account details to an unsecure site ^^ This should be fixed and https://secure.eveonline.com/ should have a valid certificate now.
Erlendur S. Thorsteinsson Software Director EVE Online, CCP Games |
|
|
CCP Nullarbor
C C P C C P Alliance
319
|
Posted - 2012.02.27 20:11:00 -
[15] - Quote
The people responsible for paying the cert bill must be ex goons. Figures. CCP Nullarbor | Exotic Dancer |
|
Alpheias
Euphoria Released 0ccupational Hazzard
483
|
Posted - 2012.02.27 20:17:00 -
[16] - Quote
CCP Nullarbor wrote:The people responsible for paying the cert bill must be ex goons. Figures.
Why be trolling brah! 'DIS BE SERIOUS. I'd kill kittens and puppies and bunnies I'd maim toddlers and teens and then more |
Lors Dornick
Kallisti Industries
159
|
Posted - 2012.02.27 20:18:00 -
[17] - Quote
CCP Nullarbor wrote:The people responsible for paying the cert bill must be ex goons. Figures.
At least CCP didn't drop sov on the domain.
|
Feligast
GoonWaffe Goonswarm Federation
1135
|
Posted - 2012.02.27 21:35:00 -
[18] - Quote
CCP Nullarbor wrote:The people responsible for paying the cert bill must be ex goons. Figures.
We're bad at bills |
Ranger 1
Ranger Corp
1072
|
Posted - 2012.02.27 21:42:00 -
[19] - Quote
CCP Nullarbor wrote:The people responsible for paying the cert bill must be ex goons. Figures.
BWAHAHAHAHahaha...
Ahem, sorry.
When I check troll in the dictionary, it has a photo shopped picture of you standing somewhere in the vicinity of a point.
Also, I can kill you with my brain. |
Cipher Jones
339
|
Posted - 2012.02.27 21:52:00 -
[20] - Quote
Bumblefck wrote:In the meantime, please continue handing over your credit card / account details to an unsecure site ^^
Because no site with a certificate was ever hacked or insecure. AND every site w/o one is completely compromised. Thank got I have IT pros like you in my life.
See what happens when fat neckbeards try to ride little ponies? The ponies die. |
|
Serene Repose
Perkone Caldari State
309
|
Posted - 2012.02.27 22:21:00 -
[21] - Quote
CCP Explorer wrote:We are aware of this issue and are working on resolving it. Sending smoke signals to the Office of Primary Concern. Couldn't find any dry wood. Give the guys a break wouldja!?
Smokestack lightnin' shinin' just like gold. |
Xyle Harkyn
Eternal Profiteers Eternal Syndicate
0
|
Posted - 2012.02.28 00:26:00 -
[22] - Quote
I have a new problem that might be related. I'm trying to do a character transfer but it isn't accepting any of my payment methods at all. It will not take my credit card and Paypal doesn't even open. |
Ocih
Space Mermaids Somethin Awfull Forums
99
|
Posted - 2012.02.28 00:33:00 -
[23] - Quote
CCP Nullarbor wrote:The people responsible for paying the cert bill must be ex goons. Figures.
That explains why the bank dekleined the transaction
|
Oh ro
1
|
Posted - 2012.02.28 00:45:00 -
[24] - Quote
J Random wrote:
Ranger1: Who wouldn't pay attention to it on a site where you enter your trusted credentials. MITM happen all the time and are very prolific.
Doublesure Ranger1 is a 70 year old forest ranger living in a tiny cabin in Yellowstone. Would explain his constant fanboyism, which is just 'duty' to him. I hope you blow up in a super volcano ranger1 |
Jarnis McPieksu
360
|
Posted - 2012.02.28 06:13:00 -
[25] - Quote
Lors Dornick wrote:CCP Nullarbor wrote:The people responsible for paying the cert bill must be ex goons. Figures. At least CCP didn't drop sov on the domain.
Just wait for it...
Domain Name: eveonline.com Created on..............: 2008-02-29 Expires on..............: 2017-08-05
So next time they can go all Goons on their domain sov is in late 2017... and I'm sure by then they've all forgotten about the "sov bill"...
Edit: There is actually a date before that too, for the original eve-online.com domain;
Domain Name: eve-online.com Created on..............: 2000-02-25 Expires on..............: 2014-02-25
Sadly I don't think many would notice if the "sov" would drop on that - at least until someone snaps it up and uses it for some scam site... |
Ranger 1
Ranger Corp
1074
|
Posted - 2012.02.28 06:23:00 -
[26] - Quote
Oh ro wrote:J Random wrote:
Ranger1: Who wouldn't pay attention to it on a site where you enter your trusted credentials. MITM happen all the time and are very prolific.
Doublesure Ranger1 is a 70 year old forest ranger living in a tiny cabin in Yellowstone. Would explain his constant fanboyism, which is just 'duty' to him. I hope you blow up in a super volcano ranger1
I'm not sure why you misquoted me, but... When I check troll in the dictionary, it has a photo shopped picture of you standing somewhere in the vicinity of a point.
Also, I can kill you with my brain. |
Bumblefck
Kerensky Initiatives
2903
|
Posted - 2012.02.28 13:07:00 -
[27] - Quote
Cipher Jones wrote:Bumblefck wrote:In the meantime, please continue handing over your credit card / account details to an unsecure site ^^ Because no site with a certificate was ever hacked or insecure. AND every site w/o one is completely compromised. Thank got I have IT pros like you in my life.
No, but it sure helps
---- CONCORD arrested two n00bs yesterday, one was drinking battery acid, the other was eating fireworks. They charged one and let the other one off. |
Steve Ronuken
Fuzzwork Enterprises
248
|
Posted - 2012.02.28 13:18:00 -
[28] - Quote
Bumblefck wrote:Cipher Jones wrote:Bumblefck wrote:In the meantime, please continue handing over your credit card / account details to an unsecure site ^^ Because no site with a certificate was ever hacked or insecure. AND every site w/o one is completely compromised. Thank got I have IT pros like you in my life. No, but it sure helps
One tiny little thing.
SSL does two things.
One well, one fairly badly.
1: It provides a secure communications channel. This bit it does well. yes, it can be Man in the Middled, but that's a function of the second part. The only other way to break it that is at all feasible requires some Java (not javascript) to compromise the comunications channel. That's the BEAST attack. It's an issue, but not a major one. 2: Authentication. This it does badly. It all depends on trust relationships.
Just because a certificate is 'expired', doesn't mean it is any worse at doing the first thing. It's purely a side effect of the second thing. FuzzWork Enterprises http://www.fuzzwork.co.uk/ Blueprint calculator and other 'useful' utilities. |
|
|
|
Pages: [1] :: one page |
First page | Previous page | Next page | Last page |