Re the Quicktime exploit
|
|
Maelstrom Janus
Ban Ban Lines !!!
Join date: 4 Jul 2007
Posts: 1,220
|
12-01-2007 03:34
Does this mean I could even catch something watching porn now ???
_____________________
The Janus Chrononauts - 'Investigate and Explore.'
|
|
Maggie McArdle
FIOS hates puppies
Join date: 8 May 2006
Posts: 2,855
|
12-01-2007 05:02
From: Maelstrom Janus Does this mean I could even catch something watching porn now ??? opens mouth.....changes mind...walks away....
_____________________
There's, uh, probably a lot of things you didn't know about lindens. Another, another interesting, uh, lindenism, uh, there are only three jobs available to a linden. The first is making shoes at night while, you know, while the old cobbler sleeps.You can bake cookies in a tree. But the third job, some call it, uh, "the show" or "the big dance," it's the profession that every linden aspires to.
|
|
Maelstrom Janus
Ban Ban Lines !!!
Join date: 4 Jul 2007
Posts: 1,220
|
12-01-2007 05:17
From: Maggie McArdle opens mouth.....changes mind...walks away.... byeeeeeeeeeeeeeeee
_____________________
The Janus Chrononauts - 'Investigate and Explore.'
|
|
Gordon Wendt
404 - User not found
Join date: 10 May 2006
Posts: 1,024
|
12-01-2007 10:34
umm... <Gordon Wendt just shakes his head, chuckes slightly, and walks away as well>
_____________________
Twitter: http://www.twitter.com/GWendt Plurk: http://www.plurk.com/GordonWendt GW Designs: XStreetSL
|
|
Kira Cuddihy
Registered User
Join date: 29 Nov 2006
Posts: 1,375
|
12-01-2007 10:41
From: Maelstrom Janus Does this mean I could even catch something watching porn now ??? Yesss, you don't have to participate anymore Mael. |
|
Void Singer
Int vSelf = Sing(void);
Join date: 24 Sep 2005
Posts: 6,973
|
12-01-2007 11:34
on a more serious note, has anyone confirmed whether or not the SL implementation is actually vunerable?
@ Mael
there's a lesson here.... always use protection (not the lesson my mother would have quoted you)
_____________________
| | . "Cat-Like Typing Detected" | . This post may contain errors in logic, spelling, and | . grammar known to the SL populace to cause confusion | | - Please Use PHP tags when posting scripts/code, Thanks. | - Can't See PHP or URL Tags Correctly? Check Out This Link... | - 
|
|
Lindal Kidd
Dances With Noobs
Join date: 26 Jun 2007
Posts: 8,371
|
12-01-2007 11:56
From: Void Singer on a more serious note, has anyone confirmed whether or not the SL implementation is actually vunerable?
@ Mael
there's a lesson here.... always use protection (not the lesson my mother would have quoted you) Well, I kind of assume that LL did. Or they wouldn't have broadcast the warning in such as way as to be sure of reaching everyone (putting up "new" TOS that you have to agree to before you can log on.)
_____________________
It's still My World and My Imagination! So there.
Lindal Kidd
|
|
Oryx Tempel
Registered User
Join date: 8 Nov 2006
Posts: 7,663
|
12-01-2007 12:03
LL should also warn us with the Message Of The Day on login. Just a quick reminder to turn off streaming video while we're waiting to connect would be handy.
|
|
Void Singer
Int vSelf = Sing(void);
Join date: 24 Sep 2005
Posts: 6,973
|
12-01-2007 12:09
From: Lindal Kidd Well, I kind of assume that LL did. Or they wouldn't have broadcast the warning in such as way as to be sure of reaching everyone (putting up "new" TOS that you have to agree to before you can log on.) I've seen that things so many times I gave up actually reading it... first born child, ok, sure why not.... and since I log direct to world, I never catch blog annoncements anymore or frontpage notices unless someone points them out here, or the rare times I actaully bother myself to look. I like Oryx's idea.... something everyone should see, regardless of configuration, good way to warn about exploits....
_____________________
| | . "Cat-Like Typing Detected" | . This post may contain errors in logic, spelling, and | . grammar known to the SL populace to cause confusion | | - Please Use PHP tags when posting scripts/code, Thanks. | - Can't See PHP or URL Tags Correctly? Check Out This Link... | -
|
|
Kitty Barnett
Registered User
Join date: 10 May 2006
Posts: 5,586
|
12-01-2007 12:16
From: Void Singer I like Oryx's idea.... something everyone should see, regardless of configuration, good way to warn about exploits.... Which is why they went with a TOS "change" in "big red letters" where you have to actively click twice to log on. It doesn't get more obvious than that. |
|
Void Singer
Int vSelf = Sing(void);
Join date: 24 Sep 2005
Posts: 6,973
|
12-01-2007 12:22
From: Kitty Barnett Which is why they went with a TOS "change" in "big red letters" where you have to actively click twice to log on. It doesn't get more obvious than that. sorry, well trained monkey here.... brain doesn't register intermediate steps between wanting a bannana and getting it =)
_____________________
| | . "Cat-Like Typing Detected" | . This post may contain errors in logic, spelling, and | . grammar known to the SL populace to cause confusion | | - Please Use PHP tags when posting scripts/code, Thanks. | - Can't See PHP or URL Tags Correctly? Check Out This Link... | -
|
|
Oryx Tempel
Registered User
Join date: 8 Nov 2006
Posts: 7,663
|
12-01-2007 12:24
From: Void Singer sorry, well trained monkey here.... brain doesn't register intermediate steps between wanting a bannana and getting it =) I totally agree. I logged in last night and flashed through the warning, "yeah yeah blah blah" and click click I was in. Didn't bother to read the blog or anything. This morning I've sat down and actually read it, which is why I think LL should add this to the MOTD during login. |
|
Qie Niangao
Coin-operated
Join date: 24 May 2006
Posts: 7,138
|
12-01-2007 19:49
Does anyone know if it would make any difference to the virulence of this exploit if landowners had--or didn't have--streaming video set on their parcels? I'm thinking of the case where a visitor to the parcel still has streaming video enabled in their viewer preferences. If the parcel had a stream set, would this foil the exploit, or make it easier?
Or maybe the exploit just employs a bad parcel stream--so could only take place on land complicit in the exploit. In that case, there's nothing a normal landowner can do to make any difference at all.
|
|
Day Oh
Registered User
Join date: 3 Feb 2007
Posts: 1,257
|
12-01-2007 20:02
The media has to be crafted to break the Quicktime codec when it tries to decode it... something like that. So it's a matter of what media you try to play using that Quicktime code. The best advice is for clients to disable Quicktime on their viewers for now, but a landowner could theoretically accidentally subject people to a bad media URL or rez something that secretly changed the media URL or something
And to the OP... yes, especially porn XD
|
|
Tarina Sewell
Just Browsing Thank you
Join date: 20 Jul 2007
Posts: 2,180
|
12-01-2007 20:07
I visit a live venue alot, and noticed for tha past few times I had been ther I crashed at least twice.. I didn't return after 2nd time.. Could this be the exploit in action, and if so who evokes it?? Or is this just video issue?
|
|
Sally Silvera
live music maniac
Join date: 17 Feb 2007
Posts: 2,325
|
12-02-2007 02:21
Mr Mars has posted more information on this subject here: /142/1b/226999/1.html |
|
Wilhelm Neumann
Runs with Crayons
Join date: 20 Apr 2006
Posts: 2,204
|
12-02-2007 02:53
quicktime now has a patch out to fix the security hole if you want to keep using it. I removed it from my computer temporarily but well obviously i need to clean the registry cause I got a pop up today to update my quicktime with the security patch fix 
_____________________
From: Raymond Figtree
I know the competition that will come along someday is learning from LL's mistakes. But do they have to make so many?
|