| |
Jammer
Registered: Nov 2002
Posts: 1289 |
Database/PM possible breach
Question first of all to Perff, I suppose.
Is it possible that content of users' PMs can be breached in any way? Or are links shared in PMs stored in any separate cache, table etc.?
I don't want to go into much details on this but years ago I worked with very talented scener on really cool game, being responsible for audio part as usual. After couple of years, he sent me (and as I heard only me) a PM with link to recent build inside. And, before I could practically do anything with it because of my temporary hardware troubles, link was already retrieved by crackers. Some bogus crack group released but it's already figured out which guys cracked it actually.
I don't want to throw accusations around yet so I write in general tone but this crack was all in all done at expense of me having civil if not friendly relationship with aforementioned scener, and he will probably never work with me again. The way of obtaining the original supply was truly low and despicable. Is it how crackers roll nowadays? :( How safe are PMs here? |
|
... 11 posts hidden. Click here to view all posts....
|
| |
Count Zero
Registered: Jan 2003
Posts: 1821 |
Not wanting to defend those "lamers" or answer instead of Perff but I have seen some funny leaks already. Public repository is just a normal facepam there. The "Maxthon" download manager tells all DL urls it finds to china even :)
Let's see whats the next step whenever Perff likely answers that moderators are not able to access private PMs and admins dont do that (as they simply have no interest in cracking scene issues).
(Currently we are not aware of a data breach - of course: ANYTHING that would point to such we'd investigate instantly.) |
| |
iAN CooG
Registered: May 2002
Posts: 3132 |
It's kinda weird finding someone still thinking that crackers have any need to show respect to anyone, the fact they are releasing ILLEGAL alterations of original software with the sole intent to make it free despite the laws telling not to do so, does make you think otherwise? They are no gentleman and don't care about your economic loss or anything else about you. |
| |
Jammer
Registered: Nov 2002
Posts: 1289 |
Quoting iAN CooGIt's kinda weird finding someone still thinking that crackers have any need to show respect to anyone, the fact they are releasing ILLEGAL alterations of original software with the sole intent to make it free despite the laws telling not to do so, does make you think otherwise? They are no gentleman and don't care about your economic loss or anything else about you.
If you say so... :D Why not publish all download links here then and take a nice big dump on devs' work? After all, crackers are deprived of all humanity and C64 games are not profitable anyway, following your nihilistic take on the problem. |
| |
iAN CooG
Registered: May 2002
Posts: 3132 |
infact some of us share CSDb hidden links in other places (not that they are hard to derivate empirically anyway), CSDb is nice to devs, we don't have to =) |
| |
TheRyk
Registered: Mar 2009
Posts: 2070 |
Crackers crack, damn sobs
However, don't find it very LIKELY they hack PMs for doing so, but that's not much more than a feeling, you can definetely be sure though that no mod/admin accesses your PMs at all, not to speak of leaking it to them cr4xXor2
More likely: Game devs nowadays put all ther WIP on Github and rather carelessly babble about it on forums or maybe IRC. Always big fun when these guys freak out about being cracked, as they really begged for it by leaking. |
| |
F7sus4
Registered: Apr 2013
Posts: 112 |
Quote: Initially it was supposed to be PM to Perff. But I decided to call some stinky shit out publicly for educational purpose ;) That's why I skipped groups/names etc. for now, but I do hope that people who resolve to such low tactics have a little sweat on their necks already.
I do sympathize, yet it feels like there's key context missing.
It just would be very odd (which is a different way to say "extremely unlikely") to target specific person's PMs (yours) and coincidentally get into position of finding a secret link with a release when tons of them are being shared between people here on a daily basis, including unfinished demos/music sketches etc. and... nothing happens.
In my opinion, the file was grabbed from the main source after the link was generated and not via your PMs, though it partially depends on what kind of link it was. We can discuss the likeliness of downloading Google-drive stuff with protected access etc. but if you simply put a file on your private server, there'd be bunch of download attempts the very same day or even shortly after. If you're associated with demoscene and have a nice website of yours, the chances that it's being sneakily browsed is surprisingly high.
What I'm trying to say is that your friend himself/herself was probably the person that unwillingly allowed the leak to happen. I do understand where the angry tone comes from, but at the same time it would be good to acknowledge that it might be roaring at the wind. |
| |
Jammer
Registered: Nov 2002
Posts: 1289 |
That's the most rational explanation. But it's also possible that some wiseguys have tools that scan things bruteforce on daily basis if anything comes by. Like this :( |
| |
chatGPZ
Registered: Dec 2001
Posts: 11114 |
Quote:But it's also possible that some wiseguys have tools that scan things bruteforce on daily basis if anything comes by.
scan what? your PMs? how? |
| |
Perff
Administrator
Posts: 1665 |
PM'ed Jammer. :D
But I hope CSDb is as secure as one would expect, and private messages are private. At least that is the idea. :)
If anyone finds a xecurity breach, feel free to contact me. Thanks! |
| |
chancer
Registered: Apr 2003
Posts: 342 |
just send me your games instead.. I need to make a comeback.. (with my pretend foreign accent ;-) ) . short answer , keep ya things to email and directly :)
yes it's annoying .. but the lure of a #1 is sometimes too tempting.
how people get a #1 has changed.. checking for a website is updated ain't the same as back in the 90's or the tactics :P |
| Previous - 1 | 2 | 3 - Next |
