"Fixed An Exploit" - whaaaaa?

I'm guessing that my CTRL-ALT-SMITE code isn't out in the open. Or LL would be spending more time making a patch.

Is there anyone in Second Life whom you do respect, or do you trash the efforts of everyone equally?

I think only three people have ever left though and none under "bad circumstances" at all.

actually, mr fairplay's poker hand evaluation code.

but, that doesn't seem to be in the list..

In case no one has thought about it, I would like to point out that psychologicaly speaking the man who does such a selfish thing is often deeply concerned about his exploits "reception" and is probably reading this thread right now.

There must be a list somewhere of who is reading or has looked at the thread, your criminal is on that list.

.
PS - I used "man" on purpose.

ME: My gun has MULTI-THREADING!!!

Blaze: But can it play DOOM 3!?!!?

ME: *looks at gun, sadly.* No, no it can't. ... *perks up* but I can SHOOT YOU REALL GOOD! *chases Blaze around screaming 'Dance, piggy, dance!"*

Yeah, open-sourcing things that aren't meant to be open can be dangerous. God knows I'm modding something that was unintentionally opensourced (apparently a very, VERY messy beta of something) for the greater... er, good. If I can find the person who made it I'd toss him some change.

I'll never understand the hacker mentality. If whoever did this had the technical savvy to pull it off they could have used their skills to do their own cool stuff instead of using it to fuck over other people and destroy their hard work. It's truly amazing how much some people suck. I hope LL is able to find the jackass and smack him down hard.

Because you're sexist and want the world to know it?

Nah, because she's right and she knows it. How many female hackers or virus writers have been arrested and jailed? I don't know of any.

Still a terribly ignorant statement. Insulting, too.

Oh, right. Math is hard. I forgot.

LOL who cares?

I'm sure she has a better explanation.

I just find it funny how if someone had done something negative and 'stereotypically female' and someone said 'heh it's obviously a woman' in a rather insulting way, everyone would be crawling all over them shouting sexism, but it doesn't go the other way. But we sure do love our double standards.

However, I don't want to hijack this thread, so I'll leave it drop. It wasn't an appropriate time or place. I apologize for this interruption, we return to your regularly scheduled thread.

Everyone else says it's bad - take it as given blaze will say it's good or inconsequential.

Same old same old... and fairly predictable.

Of course the point he overlooks about re-writing is that it is obviously faster to drag a script, or even cut/paste than it is to re-write or work out for yourself.

And that, the investment of time and learning, is what's being stolen - what you make at the end of the tunnel is the payoff for the time you put in. The knowledge gained and sometimes profit made for having the discipline to research, work, think, and create is the reward.. and I think the creator, not some random bozo, is entitled to that reward.

Siggy.

Yeah really. What were they THINKING?????????????



-Shaun

That's because they are too smart to get caught.

Soooo, what IS the link to that website with the scripts anyways? Not that _I_ would want them or anything!

Quite a few, actually.

Although, technically speaking, most of 'em were phone phreaks, not computer hackers.

Because hacking is fun. And also, a lot of times sadly, being smart doesnt pay that well.


As far as female hackers, I know/knew several

OK, that's great that LL plugged that hole so quickly. But, what was compromised? Will individuals be notified if their code was released? Will the details of the perpetrator be released to those affected so they can pursue copyright cases as necessary?

I know most people are angry about this happening, but consider the stealing of scripts a form of very bizarre flattery. Maybe it wasnt an attack (to them) so much as a massive blanket of praise for your hard scripting work. To me, if someone stole MY script I would be happy that they noticed.

All forms of authenticated communications that are possible in SL depend on a secret, such as a password. The source code is one such convenient place to embed that password. Being vulnerable to this exploit does not mean that a system was designed for security only through obscurity.



That's funny, I don't feel very flattered. I feel incredibly infuriated.

How about if I stole your car? I would only be applauding your excellent taste in vehicles.

Praise is when someone says 'Awsome job dude'
When someone takes your work without your permission and in most cases uses it in order to profit while putting out minimal effort - thats in no way flattering..

A better analogy would have involved being bent over a barrel without so much as a reach around.

No, I consider the theft a theft...

Siggy.

That's not true. The security should depend scraping the LL website. That would be nigh impossible to forge, as someone would have to hack the LL webserver.


Checking a source IP address of the incoming email would be good too, but who knows, maybe they might open a relay.

The password helps though, but as we have seen, is open to exploits.

Those are good points.

While I appreciate that the big commercial engines of SL (major vendors/GOM/Online stores) have been notified, what about us ordinary creators? I have several scripts that are no-mod that I worked very diligently on. I know that the chances of them being taken with this exploit are slim, but I would have liked to have been notified of what the breach was. LL has the ability to identify all creators of objects with no-mod scripts in them. I hope to receive notice at some point now that they have issued the patch.